CVE security advisories and vulnerability history for fast-xml-parser by npm.
Last updated
npm fast-xml-parser has 10 published CVE records since 2023, of which 0 are in CISA's Known Exploited Vulnerabilities catalog and 5 have a known public exploit. The average CVSS base score across scored CVEs is 6.8.
This page aggregates every publicly disclosed vulnerability (CVE) affecting npm fast-xml-parser, with a severity breakdown, the affected and patched versions, the most common weakness types, and the full CVE list.
How the CVSS severity of npm fast-xml-parser's CVEs breaks down, plus how many are exploited in the wild or have public exploit code.
1 additional CVE has no CVSS severity score.
In CISA’s Known Exploited Vulnerabilities catalog
0
None of npm fast-xml-parser's CVEs are currently listed in CISA's KEV catalog.
Public exploits
5
5 of npm fast-xml-parser's CVEs have a known public exploit available.
Browse every npm fast-xml-parser version named in a CVE, then pick one to see only the CVEs that affect it.
10 CVEs
The CWE weakness categories most often found in npm fast-xml-parser CVEs. Follow any weakness for its full explanation.
How many npm fast-xml-parser CVEs were published each year.
Browse vulnerabilities for other products by npm.
Common questions about npm fast-xml-parser vulnerabilities.
npm fast-xml-parser has 10 published CVE records since 2023.
None of npm fast-xml-parser's CVEs are currently listed in CISA's Known Exploited Vulnerabilities catalog.
Yes — 5 of npm fast-xml-parser's CVEs have a known public exploit.
12 distinct npm fast-xml-parser versions are named across its CVEs. Use the version filter above to see the CVEs affecting a specific version.
npm fast-xml-parser's CVEs most often map to these CWE weakness types: CWE-776 (Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion')), CWE-400 (Uncontrolled Resource Consumption), CWE-185 (Incorrect Regular Expression), CWE-120 (Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')).
npm fast-xml-parser has 1 critical and 5 high-severity CVEs.
The average CVSS base score across npm fast-xml-parser's scored CVEs is 6.8.
Vulnerability data is sourced from the CVE Program; severity, KEV, and exploit signals are aggregated by RadicalNotion.AI.
Monitor new npm fast-xml-parser vulnerabilities as they are disclosed, with AI-written analysis and remediation guidance.
