A vulnerability was found in libexpat up to 2.8.1 . It has been classified as problematic . The impacted element is an unknown function. This manipulation causes integer overflow. This vulnerability appears as CVE-2026-56409 . The attack requires local access. There is no available exploit. Upgrading the affected component is recommended.