In Mini-XML (aka mxml) v2
In Mini-XML (aka mxml) v2.12, there is stack-based buffer overflow in the scan_file function in mxmldoc.c.
Exploitability
AV:L
AC:L
PR:N
UI:R
Scope
S:U
Impact
C:N
I:N
A:H
5.5/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H