7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.051 Low
EPSS
Percentile
91.8%
James Forshaw from Context Information Security discovered several
vulnerabilities in xml-security-c, an implementation of the XML Digital
Security specification. The Common Vulnerabilities and Exposures project
identifies the following problems:
For the oldstable distribution (squeeze), these problems have been fixed in
version 1.5.1-3+squeeze2.
For the stable distribution (wheezy), these problems have been fixed in
version 1.6.1-5+deb7u1.
For the unstable distribution (sid), these problems have been fixed in
version 1.6.1-6.
We recommend that you upgrade your xml-security-c packages.
CPE | Name | Operator | Version |
---|---|---|---|
xml-security-c | eq | 1.6.1-5 | |
xml-security-c | eq | 1.6.1-5+deb7u1~bpo60+1 |