📦

xml_security_library

Vendor: aleksey

Actively Exploited 0 CISA KEV List

PoC / Exploits 1 Code Available

Total RCEs 0 Remote Access

Total CVEs 3 Total Indexed

Avg. EPSS 8.06% Exploit Prob.

Latest CVE CVE-2011-1425 Apr 04

Security Vulnerability Index

Page 1 / 1

5.1 CVSS

CVE-2011-1425

Exploit Found

xslt.c in XML Security Library (aka xmlsec) before 1.2.17, as used in WebKit and other products, when XSLT is enabled, allows remote attackers to create or overwrite arbitrary files via vectors involving the libxslt output extension and a ds:Transform element during signature verification.

EPSS: 8.06%

Severity: MEDIUM

Apr 04, 2011

Displaying 1 of 3 Total Entries

Total 1 Sections