Santuario Xml Security For Java@1.5.4 Security Vulnerabilities and Issues — Santuario Xml Security For Java@1.5.4 CVE List

Lucene search

ApacheSantuario Xml Security For Java1.5.4

2 matches found

cve•added 2013/08/20 10:55 p.m.•97 views

CVE-2013-2172

jcp/xml/dsig/internal/dom/DOMCanonicalizationMethod.java in Apache Santuario XML Security for Java 1.4.x before 1.4.8 and 1.5.x before 1.5.5 allows context-dependent attackers to spoof an XML Signature by using the CanonicalizationMethod parameter to specify an arbitrary weak "canonicalization algo...

4.3CVSS5.9AI score0.04052EPSS

cve•added 2014/01/11 1:55 a.m.•93 views

CVE-2013-4517

Apache Santuario XML Security for Java before 1.5.6, when applying Transforms, allows remote attackers to cause a denial of service (memory consumption) via crafted Document Type Definitions (DTDs), related to signatures.

4.3CVSS6AI score0.13095EPSS