Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-5065

Malicious code in bioql PyPI...

4.3CVSS7.7AI score0.0593EPSS
Exploits1References45
RedHat Linux
RedHat Linux
added 2014/10/09 4:7 p.m.9 views

Java: XML signature spoofing

A flaw was found in the way Apache Santuario XML Security for Java validated XML signatures. Santuario allowed a signature to specify an arbitrary canonicalization algorithm, which would be applied to the SignedInfo XML fragment. A remote attacker could exploit this to spoof an XML signature via ...

4.3CVSS5.9AI score0.0593EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2014/04/14 1:46 p.m.7 views

Java: XML signature spoofing

A flaw was found in the way Apache Santuario XML Security for Java validated XML signatures. Santuario allowed a signature to specify an arbitrary canonicalization algorithm, which would be applied to the SignedInfo XML fragment. A remote attacker could exploit this to spoof an XML signature via ...

4.3CVSS5.9AI score0.0593EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2013/09/09 4:51 p.m.7 views

Java: XML signature spoofing

A flaw was found in the way Apache Santuario XML Security for Java validated XML signatures. Santuario allowed a signature to specify an arbitrary canonicalization algorithm, which would be applied to the SignedInfo XML fragment. A remote attacker could exploit this to spoof an XML signature via ...

4.3CVSS5.9AI score0.0593EPSS
Exploits1References5
OSV
OSV
added 2013/08/20 10:55 p.m.9 views

CVE-2013-2172

jcp/xml/dsig/internal/dom/DOMCanonicalizationMethod.java in Apache Santuario XML Security for Java 1.4.x before 1.4.8 and 1.5.x before 1.5.5 allows context-dependent attackers to spoof an XML Signature by using the CanonicalizationMethod parameter to specify an arbitrary weak "canonicalization...

4.3CVSS6.1AI score0.0593EPSS
Exploits1References24
Prion
Prion
added 2013/08/20 10:55 p.m.23 views

Code injection

jcp/xml/dsig/internal/dom/DOMCanonicalizationMethod.java in Apache Santuario XML Security for Java 1.4.x before 1.4.8 and 1.5.x before 1.5.5 allows context-dependent attackers to spoof an XML Signature by using the CanonicalizationMethod parameter to specify an arbitrary weak "canonicalization...

4.3CVSS7AI score0.0593EPSS
Exploits1References24Affected Software1
FreeBSD
FreeBSD
added 2009/07/15 12:0 a.m.40 views

mono -- XML signature HMAC truncation spoofing

Secunia reports: A security issue has been reported in Mono, which can be exploited by malicious people to conduct spoofing attacks. The security issue is caused due to an error when processing certain XML signatures...

5CVSS1.6AI score0.06348EPSS
Exploits0References2
Rows per page
Query Builder