GHSA-whj6-8xvc-hmjm
GitHub Security Advisory
⚠ Unreviewed
CRITICAL
Has CVE
Advisory Details
A heap-based buffer overflow vulnerability exists in the XML Decompression EnumerationUncompressor::UncompressItem functionality of AT&T Labs’ Xmill 0.7. A specially crafted XMI file can lead to remote code execution. An attacker can provide a malicious file to trigger this vulnerability.
Related CVEs
Key Information
9.0
/10
Dataset
Last updated: August 2, 2025 6:46 AM
Data from GitHub Advisory Database. This information is provided for research and educational purposes.