CVE-2025-48994 | XML-Security signxml up to 4.0.3 incorrect implementation of authentication algorithm (GHSA-6vx8-pcwv-xhf4)

Inserito da Angelo Barbosa | Giu 2, 2025 | CVE

A vulnerability classified as problematic has been found in XML-Security signxml up to 4.0.3. This affects an unknown part. The manipulation leads to incorrect implementation of authentication algorithm.

This vulnerability is uniquely identified as CVE-2025-48994. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-48994 | XML-Security signxml up to 4.0.3 incorrect implementation of authentication algorithm (GHSA-6vx8-pcwv-xhf4)

Post correlati

CVE-2024-5150 | Login with Phone Number Plugin up to 1.7.26 on WordPress improper authentication

CVE-2025-21596 | Juniper Networks Junos OS up to 23.4R2 on SRX pem Command exceptional condition (JSA92864)

CVE-2023-6064 | PayHere Payment Gateway Plugin up to 2.2.11 on WordPress information disclosure

CVE-2023-6895 | Hikvision Intercom Broadcasting System 3.0.3_20201113_RELEASE(HIK) /php/ping.php jsondata[ip] os command injection