CVE-2026-41080

ADVISORY - nist

Summary

libexpat before 2.8.0 uses insufficient entropy, and thus hash flooding can occur via a crafted XML document.

EPSS Score⁠: 0.00379 (0.296)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-331⁠

Insufficient Entropy

ADVISORY - redhat

CWE-331⁠

Insufficient Entropy

Impacted images

Advisories

NIST

CREATED

2 months ago

UPDATED

8 days ago

ADVISORY IDCVE-2026-41080⁠

EXPLOITABILITY SCORE

1.4

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-331⁠

CVSS SCORE

2.9low

Alpine

CREATED

2 months ago

UPDATED

2 hours ago

ADVISORY IDCVE-2026-41080⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Debian

CREATED

2 months ago

UPDATED

2 months ago

ADVISORY IDCVE-2026-41080⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Ubuntu

CREATED

2 months ago

UPDATED

1 month ago

ADVISORY IDCVE-2026-41080⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

Amazon

CREATED

26 days ago

UPDATED

25 days ago

ADVISORY IDALAS2-2026-3306⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow

Amazon

CREATED

26 days ago

UPDATED

26 days ago

ADVISORY IDALAS2023-2026-1706⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow

Red Hat

CREATED

2 months ago

UPDATED

2 months ago

ADVISORY IDCVE-2026-41080⁠

EXPLOITABILITY SCORE

2.2

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-331⁠

CVSS SCORE

3.7low

Photon

CREATED

1 month ago

UPDATED

1 month ago

ADVISORY ID

CVE-2026-41080

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

7.5high