Search for packages
Package details: pkg:maven/org.apache.santuario/xmlsec@1.5.4
purl pkg:maven/org.apache.santuario/xmlsec@1.5.4
Next non-vulnerable version 2.2.6
Latest non-vulnerable version 3.0.3
Risk 4.0
Vulnerabilities affecting this package (4)
Vulnerability Summary Fixed by
VCID-54af-zg2e-aaan
Aliases:
CVE-2013-2172
GHSA-r237-w2w6-jq3p
Cryptographic Issues Attackers could spoof an XML Signature by using the CanonicalizationMethod parameter to specify an arbitrary weak canonicalization algorithm to apply to the `SignedInfo` part of the Signature.
1.5.5
Affected by 3 other vulnerabilities.
VCID-8mkv-tade-aaam
Aliases:
CVE-2023-44483
GHSA-xfrj-6vvc-3xm2
Apache Santuario - XML Security for Java are vulnerable to private key disclosure
2.2.6
Affected by 0 other vulnerabilities.
2.3.4
Affected by 0 other vulnerabilities.
3.0.3
Affected by 0 other vulnerabilities.
VCID-95nw-fscc-aaaa
Aliases:
CVE-2021-40690
GHSA-j8wc-gxx9-82hx
Exposure of Sensitive Information to an Unauthorized Actor in Apache Santuario
2.1.7
Affected by 1 other vulnerability.
2.2.3
Affected by 1 other vulnerability.
VCID-f3nz-xu8d-aaar
Aliases:
CVE-2013-4517
GHSA-4p4w-6h54-g885
Uncontrolled Resource Consumption When applying Transforms, remote attackers could cause a denial of service (memory consumption) via crafted Document Type Definitions (DTDs), related to signatures.
1.5.6
Affected by 2 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T16:46:21.311758+00:00 GitLab Importer Affected by VCID-8mkv-tade-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2023-44483.yml 36.1.3
2025-06-20T16:46:19.299117+00:00 GitLab Importer Affected by VCID-8mkv-tade-aaam None 36.1.3
2025-06-20T15:16:55.926958+00:00 GitLab Importer Affected by VCID-95nw-fscc-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2021-40690.yml 36.1.3
2025-06-20T15:16:55.659357+00:00 GitLab Importer Affected by VCID-95nw-fscc-aaaa None 36.1.3
2025-06-20T13:46:17.755866+00:00 GitLab Importer Affected by VCID-f3nz-xu8d-aaar None 36.1.3
2025-06-20T13:46:17.646862+00:00 GitLab Importer Affected by VCID-f3nz-xu8d-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-4517.yml 36.1.3
2025-06-20T13:46:02.455756+00:00 GitLab Importer Affected by VCID-54af-zg2e-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-2172.yml 36.1.3
2025-06-20T13:46:02.369254+00:00 GitLab Importer Affected by VCID-54af-zg2e-aaan None 36.1.3
2025-06-03T23:24:17.528441+00:00 GitLab Importer Affected by VCID-8mkv-tade-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2023-44483.yml 36.1.0
2025-06-03T23:24:15.453777+00:00 GitLab Importer Affected by VCID-8mkv-tade-aaam None 36.1.0
2025-06-03T21:58:59.527007+00:00 GitLab Importer Affected by VCID-95nw-fscc-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2021-40690.yml 36.1.0
2025-06-03T21:58:59.305871+00:00 GitLab Importer Affected by VCID-95nw-fscc-aaaa None 36.1.0
2025-06-03T20:37:14.036580+00:00 GitLab Importer Affected by VCID-f3nz-xu8d-aaar None 36.1.0
2025-06-03T20:37:13.726171+00:00 GitLab Importer Affected by VCID-f3nz-xu8d-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-4517.yml 36.1.0
2025-06-03T20:36:57.953414+00:00 GitLab Importer Affected by VCID-54af-zg2e-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-2172.yml 36.1.0
2025-06-03T20:36:57.897755+00:00 GitLab Importer Affected by VCID-54af-zg2e-aaan None 36.1.0
2025-06-02T23:21:44.188775+00:00 GitLab Importer Affected by VCID-8mkv-tade-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2023-44483.yml 36.1.2
2025-06-02T23:21:42.045192+00:00 GitLab Importer Affected by VCID-8mkv-tade-aaam None 36.1.2
2025-06-02T21:44:54.088425+00:00 GitLab Importer Affected by VCID-95nw-fscc-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2021-40690.yml 36.1.2
2025-06-02T21:44:53.819881+00:00 GitLab Importer Affected by VCID-95nw-fscc-aaaa None 36.1.2
2025-06-02T20:16:29.342174+00:00 GitLab Importer Affected by VCID-f3nz-xu8d-aaar None 36.1.2
2025-06-02T20:16:29.019745+00:00 GitLab Importer Affected by VCID-f3nz-xu8d-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-4517.yml 36.1.2
2025-06-02T20:16:10.419340+00:00 GitLab Importer Affected by VCID-54af-zg2e-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-2172.yml 36.1.2
2025-06-02T20:16:10.360216+00:00 GitLab Importer Affected by VCID-54af-zg2e-aaan None 36.1.2
2025-04-03T21:41:41.443144+00:00 GitLab Importer Affected by VCID-8mkv-tade-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2023-44483.yml 36.0.0
2025-04-03T21:41:36.868938+00:00 GitLab Importer Affected by VCID-8mkv-tade-aaam None 36.0.0
2025-04-03T18:51:30.406717+00:00 GitLab Importer Affected by VCID-95nw-fscc-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2021-40690.yml 36.0.0
2025-04-03T18:51:29.705687+00:00 GitLab Importer Affected by VCID-95nw-fscc-aaaa None 36.0.0
2025-04-03T16:24:36.377477+00:00 GitLab Importer Affected by VCID-f3nz-xu8d-aaar None 36.0.0
2025-04-03T16:24:35.766281+00:00 GitLab Importer Affected by VCID-f3nz-xu8d-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-4517.yml 36.0.0
2025-04-03T16:23:54.885071+00:00 GitLab Importer Affected by VCID-54af-zg2e-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-2172.yml 36.0.0
2025-04-03T16:23:54.725043+00:00 GitLab Importer Affected by VCID-54af-zg2e-aaan None 36.0.0
2025-02-18T03:38:09.631641+00:00 GitLab Importer Affected by VCID-8mkv-tade-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2023-44483.yml 35.1.0
2025-02-18T03:38:09.288639+00:00 GitLab Importer Affected by VCID-8mkv-tade-aaam None 35.1.0
2025-02-18T00:27:20.870132+00:00 GitLab Importer Affected by VCID-95nw-fscc-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2021-40690.yml 35.1.0
2025-02-18T00:27:20.622777+00:00 GitLab Importer Affected by VCID-95nw-fscc-aaaa None 35.1.0
2025-02-17T22:18:42.518167+00:00 GitLab Importer Affected by VCID-f3nz-xu8d-aaar None 35.1.0
2025-02-17T22:18:42.401940+00:00 GitLab Importer Affected by VCID-f3nz-xu8d-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-4517.yml 35.1.0
2025-02-17T22:17:57.301175+00:00 GitLab Importer Affected by VCID-54af-zg2e-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-2172.yml 35.1.0
2025-02-17T22:17:57.182577+00:00 GitLab Importer Affected by VCID-54af-zg2e-aaan None 35.1.0
2024-11-21T00:58:12.973493+00:00 GitLab Importer Affected by VCID-8mkv-tade-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2023-44483.yml 35.0.0
2024-11-20T23:12:37.982762+00:00 GitLab Importer Affected by VCID-95nw-fscc-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2021-40690.yml 35.0.0
2024-11-20T21:53:21.908773+00:00 GitLab Importer Affected by VCID-f3nz-xu8d-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-4517.yml 35.0.0
2024-11-20T21:53:08.450208+00:00 GitLab Importer Affected by VCID-54af-zg2e-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-2172.yml 35.0.0
2024-11-19T00:39:46.283385+00:00 GitLab Importer Affected by VCID-8mkv-tade-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2023-44483.yml 34.3.2
2024-11-18T23:00:10.872213+00:00 GitLab Importer Affected by VCID-95nw-fscc-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2021-40690.yml 34.3.2
2024-11-18T21:50:45.227407+00:00 GitLab Importer Affected by VCID-f3nz-xu8d-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-4517.yml 34.3.2
2024-11-18T21:50:30.102558+00:00 GitLab Importer Affected by VCID-54af-zg2e-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-2172.yml 34.3.2
2024-10-08T01:18:57.961343+00:00 GitLab Importer Affected by VCID-8mkv-tade-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2023-44483.yml 34.0.2
2024-10-07T23:59:06.577764+00:00 GitLab Importer Affected by VCID-95nw-fscc-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2021-40690.yml 34.0.2
2024-10-07T22:50:14.617719+00:00 GitLab Importer Affected by VCID-f3nz-xu8d-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-4517.yml 34.0.2
2024-10-07T22:49:54.224663+00:00 GitLab Importer Affected by VCID-54af-zg2e-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-2172.yml 34.0.2
2024-10-07T21:44:31.321749+00:00 GHSA Importer Affected by VCID-8mkv-tade-aaam https://github.com/advisories/GHSA-xfrj-6vvc-3xm2 34.0.2
2024-10-07T19:48:00.113775+00:00 GHSA Importer Affected by VCID-95nw-fscc-aaaa https://github.com/advisories/GHSA-j8wc-gxx9-82hx 34.0.2
2024-10-07T16:45:29.867626+00:00 GHSA Importer Affected by VCID-f3nz-xu8d-aaar https://github.com/advisories/GHSA-4p4w-6h54-g885 34.0.2
2024-10-07T16:44:55.407586+00:00 GHSA Importer Affected by VCID-54af-zg2e-aaan https://github.com/advisories/GHSA-r237-w2w6-jq3p 34.0.2
2024-09-23T01:24:39.760354+00:00 GitLab Importer Affected by VCID-8mkv-tade-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2023-44483.yml 34.0.1
2024-09-23T00:13:12.360822+00:00 GitLab Importer Affected by VCID-95nw-fscc-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2021-40690.yml 34.0.1
2024-09-22T23:05:53.653140+00:00 GitLab Importer Affected by VCID-f3nz-xu8d-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-4517.yml 34.0.1
2024-09-22T22:14:02.014158+00:00 GHSA Importer Affected by VCID-8mkv-tade-aaam https://github.com/advisories/GHSA-xfrj-6vvc-3xm2 34.0.1
2024-09-22T20:28:35.490009+00:00 GHSA Importer Affected by VCID-95nw-fscc-aaaa https://github.com/advisories/GHSA-j8wc-gxx9-82hx 34.0.1
2024-09-22T17:09:31.074518+00:00 GHSA Importer Affected by VCID-f3nz-xu8d-aaar https://github.com/advisories/GHSA-4p4w-6h54-g885 34.0.1
2024-09-22T17:08:57.346126+00:00 GHSA Importer Affected by VCID-54af-zg2e-aaan https://github.com/advisories/GHSA-r237-w2w6-jq3p 34.0.1
2024-09-17T22:37:40.454395+00:00 GitLab Importer Affected by VCID-54af-zg2e-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-2172.yml 34.0.1
2024-04-24T03:54:08.695513+00:00 GitLab Importer Affected by VCID-8mkv-tade-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2023-44483.yml 34.0.0rc4
2024-04-24T03:54:08.328586+00:00 GitLab Importer Affected by VCID-8mkv-tade-aaam None 34.0.0rc4
2024-04-24T02:16:46.491936+00:00 GitLab Importer Affected by VCID-95nw-fscc-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2021-40690.yml 34.0.0rc4
2024-04-24T02:16:45.637392+00:00 GitLab Importer Affected by VCID-95nw-fscc-aaaa None 34.0.0rc4
2024-04-24T00:56:51.610340+00:00 GitLab Importer Affected by VCID-f3nz-xu8d-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-4517.yml 34.0.0rc4
2024-04-24T00:56:51.368007+00:00 GitLab Importer Affected by VCID-f3nz-xu8d-aaar None 34.0.0rc4
2024-04-24T00:56:12.883616+00:00 GitLab Importer Affected by VCID-54af-zg2e-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-2172.yml 34.0.0rc4
2024-04-24T00:56:12.735949+00:00 GitLab Importer Affected by VCID-54af-zg2e-aaan None 34.0.0rc4
2024-04-24T00:51:12.494035+00:00 GHSA Importer Affected by VCID-8mkv-tade-aaam https://github.com/advisories/GHSA-xfrj-6vvc-3xm2 34.0.0rc4
2024-04-24T00:51:12.080504+00:00 GHSA Importer Affected by VCID-8mkv-tade-aaam None 34.0.0rc4
2024-04-23T21:51:52.880824+00:00 GHSA Importer Affected by VCID-95nw-fscc-aaaa https://github.com/advisories/GHSA-j8wc-gxx9-82hx 34.0.0rc4
2024-04-23T21:51:52.225014+00:00 GHSA Importer Affected by VCID-95nw-fscc-aaaa None 34.0.0rc4
2024-04-23T17:57:26.179804+00:00 GHSA Importer Affected by VCID-f3nz-xu8d-aaar https://github.com/advisories/GHSA-4p4w-6h54-g885 34.0.0rc4
2024-04-23T17:57:25.799489+00:00 GHSA Importer Affected by VCID-f3nz-xu8d-aaar None 34.0.0rc4
2024-04-23T17:55:49.981812+00:00 GHSA Importer Affected by VCID-54af-zg2e-aaan https://github.com/advisories/GHSA-r237-w2w6-jq3p 34.0.0rc4
2024-04-23T17:55:49.176322+00:00 GHSA Importer Affected by VCID-54af-zg2e-aaan None 34.0.0rc4
2024-01-10T06:34:46.756370+00:00 GitLab Importer Affected by VCID-8mkv-tade-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2023-44483.yml 34.0.0rc2
2024-01-10T06:34:46.382628+00:00 GitLab Importer Affected by VCID-8mkv-tade-aaam None 34.0.0rc2
2024-01-10T04:51:20.562284+00:00 GitLab Importer Affected by VCID-95nw-fscc-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2021-40690.yml 34.0.0rc2
2024-01-10T04:51:19.713485+00:00 GitLab Importer Affected by VCID-95nw-fscc-aaaa None 34.0.0rc2
2024-01-10T03:20:47.442697+00:00 GitLab Importer Affected by VCID-f3nz-xu8d-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-4517.yml 34.0.0rc2
2024-01-10T03:20:47.177402+00:00 GitLab Importer Affected by VCID-f3nz-xu8d-aaar None 34.0.0rc2
2024-01-10T03:20:01.345472+00:00 GitLab Importer Affected by VCID-54af-zg2e-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-2172.yml 34.0.0rc2
2024-01-10T03:20:01.193970+00:00 GitLab Importer Affected by VCID-54af-zg2e-aaan None 34.0.0rc2
2024-01-10T02:58:00.212392+00:00 GHSA Importer Affected by VCID-8mkv-tade-aaam https://github.com/advisories/GHSA-xfrj-6vvc-3xm2 34.0.0rc2
2024-01-10T02:57:59.803881+00:00 GHSA Importer Affected by VCID-8mkv-tade-aaam None 34.0.0rc2
2024-01-09T23:48:17.979903+00:00 GHSA Importer Affected by VCID-95nw-fscc-aaaa https://github.com/advisories/GHSA-j8wc-gxx9-82hx 34.0.0rc2
2024-01-09T23:48:17.306900+00:00 GHSA Importer Affected by VCID-95nw-fscc-aaaa None 34.0.0rc2
2024-01-09T19:53:56.720164+00:00 GHSA Importer Affected by VCID-f3nz-xu8d-aaar https://github.com/advisories/GHSA-4p4w-6h54-g885 34.0.0rc2
2024-01-09T19:53:56.169188+00:00 GHSA Importer Affected by VCID-f3nz-xu8d-aaar None 34.0.0rc2
2024-01-09T19:52:29.622064+00:00 GHSA Importer Affected by VCID-54af-zg2e-aaan https://github.com/advisories/GHSA-r237-w2w6-jq3p 34.0.0rc2
2024-01-09T19:52:28.797517+00:00 GHSA Importer Affected by VCID-54af-zg2e-aaan None 34.0.0rc2
2024-01-03T23:21:06.044493+00:00 GitLab Importer Affected by VCID-8mkv-tade-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2023-44483.yml 34.0.0rc1
2024-01-03T23:21:05.647255+00:00 GitLab Importer Affected by VCID-8mkv-tade-aaam None 34.0.0rc1
2024-01-03T21:38:52.210996+00:00 GitLab Importer Affected by VCID-95nw-fscc-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2021-40690.yml 34.0.0rc1
2024-01-03T21:38:51.286107+00:00 GitLab Importer Affected by VCID-95nw-fscc-aaaa None 34.0.0rc1
2024-01-03T19:58:11.311804+00:00 GitLab Importer Affected by VCID-f3nz-xu8d-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-4517.yml 34.0.0rc1
2024-01-03T19:58:11.063320+00:00 GitLab Importer Affected by VCID-f3nz-xu8d-aaar None 34.0.0rc1
2024-01-03T19:57:30.455463+00:00 GitLab Importer Affected by VCID-54af-zg2e-aaan None 34.0.0rc1
2024-01-03T19:33:48.919437+00:00 GHSA Importer Affected by VCID-95nw-fscc-aaaa https://github.com/advisories/GHSA-j8wc-gxx9-82hx 34.0.0rc1
2024-01-03T19:33:48.221221+00:00 GHSA Importer Affected by VCID-95nw-fscc-aaaa None 34.0.0rc1
2024-01-03T18:00:33.835192+00:00 GitLab Importer Affected by VCID-54af-zg2e-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-2172.yml 34.0.0rc1
2024-01-03T15:23:33.113417+00:00 GHSA Importer Affected by VCID-f3nz-xu8d-aaar None 34.0.0rc1
2024-01-03T15:22:35.184805+00:00 GHSA Importer Affected by VCID-54af-zg2e-aaan None 34.0.0rc1