Lucene search
K

6 matches found

OSV
OSV
added 2013/08/20 10:55 p.m.7 views

CVE-2013-2153

The XML digital signature functionality xsec/dsig/DSIGReference.cpp in Apache Santuario XML Security for C++ aka xml-security-c before 1.7.1 allows context-dependent attackers to reuse signatures and spoof arbitrary content via crafted Reference elements in the Signature, aka "XML Signature Bypas...

4.3CVSS6.4AI score0.04767EPSS
Exploits1References7
UbuntuCve
UbuntuCve
added 2013/08/20 10:55 p.m.32 views

CVE-2013-2153

The XML digital signature functionality xsec/dsig/DSIGReference.cpp in Apache Santuario XML Security for C++ aka xml-security-c before 1.7.1 allows context-dependent attackers to reuse signatures and spoof arbitrary content via crafted Reference elements in the Signature, aka "XML Signature Bypas...

4.3CVSS5.9AI score0.04767EPSS
Exploits1References1
CVE
CVE
added 2013/08/20 10:0 p.m.64 views

CVE-2013-2153

The CVE-2013-2153 issue affects Apache Santuario XML Security for C++ (xml-security-c) prior to 1.7.1. The vulnerability lies in the XML digital signature handling (DSIGReference.cpp), which allows context-dependent attackers to reuse signatures and spoof arbitrary content via crafted Reference e...

4.3CVSS6.4AI score0.04767EPSS
Exploits1References7Affected Software1
securityvulns
securityvulns
added 2013/07/01 12:0 a.m.67 views

CVE-2013-2153: Apache Santuario C++ signature bypass vulnerability

CVE-2013-2153: Apache Santuario XML Security for C++ contains an XML Signature Bypass issue Severity: Critical Vendor: The Apache Software Foundation Versions Affected: Apache Santuario XML Security for C++ library versions prior to V1.7.1 Description: The implementation of XML digital signatures...

4.3CVSS0.9AI score0.04767EPSS
Exploits1
OSV
OSV
added 2013/06/18 12:0 a.m.36 views

DSA-2710-1 xml-security-c - several

Bulletin has no description...

7.5CVSS5.9AI score0.08402EPSS
Exploits2
OpenVAS
OpenVAS
added 2013/06/17 12:0 a.m.18 views

Debian: Security Advisory (DSA-2710-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.6AI score0.08402EPSS
Exploits2References3
Rows per page
Query Builder