← Back to CVE List

CVE-2022-28131

Published: 2022-08-10T20:15Z
Last Modified: 2024-11-21T06:56Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
Uncontrolled recursion in Decoder.Skip in encoding/xml before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via a deeply nested XML document. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt