7.5

CVSS Score

3.1

-

CVSS Score

Basic Information

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2025-25341

CVE-2025-25341: libxmljs has segmentation fault, potentially leading to a denial-of-service (DoS)

A vulnerability exists in the libxmljs 1.0.11 when parsing a specially crafted XML document. Accessing the internal _ref property on entity_ref and entity_decl nodes causes a segmentation fault, potentially leading to a denial-of-service (DoS).

(GitHub Advisory)

Miggo Vulnerability Database

→

CVE-2025-25341

CVE-2025-25341:

7.5

CVSS Score

3.1

-

CVSS Score

Basic Information

Technical Details

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
libxmljs	npm	<= 1.0.11

Technical Details

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability lies in the C++ binding layer of libxmljs, specifically in the property getter for the internal _ref property of wrapped XML node objects. This getter does not correctly handle nodes of type entity_ref or entity_decl, leading to a segmentation fault and a denial-of-service when the _ref property is accessed. While the root cause is in the native C++ code, the provided vulnerable functions are the JavaScript functions that would appear in a runtime profile during an exploit. An attacker would use libxmljs.parseXml() to parse a malicious XML document. Then, by traversing the document, for example with Document.get() and Element.childNodes(), they can obtain a reference to a vulnerable node object. Accessing the _ref property on this object, even implicitly via console.log(), triggers the crash. The identified functions are the JavaScript API surface that enables the exploit.

Vulnerable functions

parseXml

libxmljs

This function is used to parse the XML input. A specially crafted XML document can create `entity_ref` and `entity_decl` nodes that, when their internal `_ref` property is accessed, cause a segmentation fault. This function is the entry point for the malicious input.

Document.get

libxmljs

This function is used to retrieve nodes from the parsed document using an XPath expression. In the proof-of-concept, it is used to navigate to a part of the document that contains a vulnerable node.

Element.childNodes

libxmljs

This function returns the children of an element node. In the proof-of-concept, it is used to retrieve the vulnerable `entity_ref` node from its parent.

WAF Protection Rules

WAF Rule

W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.

Reasoning

*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.

7.5

-

Basic Information

Basic Information

Concerned about an active attack path?

CVE-2025-25341: libxmljs has segmentation fault, potentially leading to a denial-of-service (DoS)

CVE-2025-25341:

7.5

-

Basic Information

Basic Information

Technical Details

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability IntelligenceMiggo AI

CVE-2025-25341: libxmljs has segmentation fault, potentially leading to a denial-of-service (DoS)

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

7.5

7.5

Technical Details

Basic Information

Basic Information

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI