CVE-2022-49043 | xmlsoft libxml2 up to 2.10.x xinclude.c xmlXIncludeAddNode use after free (ID 17467)

CVE-2022-49043 | xmlsoft libxml2 up to 2.10.x xinclude.c xmlXIncludeAddNode use after free (ID 17467)

A vulnerability classified as critical has been found in xmlsoft libxml2 up to 2.10.x. Affected is the function xmlXIncludeAddNode of the file xinclude.c. The manipulation leads to use after free. This vulnerability is traded as CVE-2022-49043. Local access is required to approach this attack. There is no exploit available. It is recommended to upgrade the affected component.