{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/56808?format=json","vulnerability_id":"VCID-jt3b-tqv6-5ybb","summary":"xml-crypto Vulnerable to XML Signature Verification Bypass via DigestValue Comment\nAn attacker may be able to exploit this vulnerability to bypass authentication or authorization mechanisms in systems that rely on xml-crypto for verifying signed XML documents. The vulnerability allows an attacker to modify a valid signed XML message in a way that still passes signature verification checks. For example, it could be used to alter critical identity or access control attributes, enabling an attacker to escalate privileges or impersonate another user.","aliases":[{"alias":"CVE-2025-29775"},{"alias":"GHSA-x3m8-899r-f7c3"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/84403?format=json","purl":"pkg:npm/xml-crypto@2.1.6","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:npm/xml-crypto@2.1.6"},{"url":"http://public2.vulnerablecode.io/api/packages/84402?format=json","purl":"pkg:npm/xml-crypto@3.2.1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:npm/xml-crypto@3.2.1"},{"url":"http://public2.vulnerablecode.io/api/packages/84401?format=json","purl":"pkg:npm/xml-crypto@6.0.1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:npm/xml-crypto@6.0.1"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/84400?format=json","purl":"pkg:npm/xml-crypto@3.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-am16-rjug-t3fa"},{"vulnerability":"VCID-jt3b-tqv6-5ybb"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:npm/xml-crypto@3.0.0"},{"url":"http://public2.vulnerablecode.io/api/packages/81147?format=json","purl":"pkg:npm/xml-crypto@4.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-9jj5-xy45-sue6"},{"vulnerability":"VCID-am16-rjug-t3fa"},{"vulnerability":"VCID-jt3b-tqv6-5ybb"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:npm/xml-crypto@4.0.0"}],"references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-29775.json","reference_id":"","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-29775.json"},{"reference_url":"https://github.com/node-saml/xml-crypto","reference_id":"","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/node-saml/xml-crypto"},{"reference_url":"https://github.com/node-saml/xml-crypto/commit/28f92218ecbb8dcbd238afa4efbbd50302aa9aed","reference_id":"","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-03-14T18:24:28Z/"}],"url":"https://github.com/node-saml/xml-crypto/commit/28f92218ecbb8dcbd238afa4efbbd50302aa9aed"},{"reference_url":"https://github.com/node-saml/xml-crypto/commit/886dc63a8b4bb5ae1db9f41c7854b171eb83aa98","reference_id":"","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-03-14T18:24:28Z/"}],"url":"https://github.com/node-saml/xml-crypto/commit/886dc63a8b4bb5ae1db9f41c7854b171eb83aa98"},{"reference_url":"https://github.com/node-saml/xml-crypto/commit/8ac6118ee7978b46aa56b82cbcaa5fca58c93a07","reference_id":"","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-03-14T18:24:28Z/"}],"url":"https://github.com/node-saml/xml-crypto/commit/8ac6118ee7978b46aa56b82cbcaa5fca58c93a07"},{"reference_url":"https://github.com/node-saml/xml-crypto/releases/tag/v2.1.6","reference_id":"","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-03-14T18:24:28Z/"}],"url":"https://github.com/node-saml/xml-crypto/releases/tag/v2.1.6"},{"reference_url":"https://github.com/node-saml/xml-crypto/releases/tag/v3.2.1","reference_id":"","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-03-14T18:24:28Z/"}],"url":"https://github.com/node-saml/xml-crypto/releases/tag/v3.2.1"},{"reference_url":"https://github.com/node-saml/xml-crypto/releases/tag/v6.0.1","reference_id":"","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-03-14T18:24:28Z/"}],"url":"https://github.com/node-saml/xml-crypto/releases/tag/v6.0.1"},{"reference_url":"https://workos.com/blog/samlstorm","reference_id":"","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://workos.com/blog/samlstorm"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2352600","reference_id":"2352600","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2352600"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2025-29775","reference_id":"CVE-2025-29775","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-29775"},{"reference_url":"https://github.com/advisories/GHSA-x3m8-899r-f7c3","reference_id":"GHSA-x3m8-899r-f7c3","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-x3m8-899r-f7c3"},{"reference_url":"https://github.com/node-saml/xml-crypto/security/advisories/GHSA-x3m8-899r-f7c3","reference_id":"GHSA-x3m8-899r-f7c3","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-03-14T18:24:28Z/"}],"url":"https://github.com/node-saml/xml-crypto/security/advisories/GHSA-x3m8-899r-f7c3"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3374","reference_id":"RHSA-2025:3374","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:3374"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3595","reference_id":"RHSA-2025:3595","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:3595"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7626","reference_id":"RHSA-2025:7626","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:7626"}],"weaknesses":[{"cwe_id":347,"name":"Improper Verification of Cryptographic Signature","description":"The product does not verify, or incorrectly verifies, the cryptographic signature for data."},{"cwe_id":937,"name":"OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities","description":"Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013."},{"cwe_id":1035,"name":"OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities","description":"Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017."}],"exploits":[],"severity_range_score":"9.0 - 10.0","exploitability":"0.5","weighted_severity":"9.0","risk_score":4.5,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jt3b-tqv6-5ybb"}