CVE-2025-48995 | XML-Security signxml up to 4.0.3 timing discrepancy (GHSA-gmhf-gg8w-jw42)

Inserito da Angelo Barbosa | Giu 2, 2025 | CVE

A vulnerability classified as problematic was found in XML-Security signxml up to 4.0.3. This vulnerability affects unknown code. The manipulation leads to observable timing discrepancy.

This vulnerability was named CVE-2025-48995. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-48995 | XML-Security signxml up to 4.0.3 timing discrepancy (GHSA-gmhf-gg8w-jw42)

Post correlati

CVE-2023-49114 | Qognify VMS Client Viewer 7.1 uncontrolled search path

CVE-2025-24749 | Overt Software Solutions EZPZ SAML SP Single Sign On Plugin up to 1.2.5 on WordPress cross-site request forgery

CVE-2024-54047 | Adobe Connect up to 11.4.7/12.6 cross site scripting (apsb24-99)

CVE-2025-21393 | Microsoft SharePoint Server cross site scripting