VulnerableCode Package Details - pkg:maven/org.apache.santuario/xmlsec@1.5.6

Vulnerability	Summary	Fixed by
VCID-8mkv-tade-aaam Aliases: CVE-2023-44483 GHSA-xfrj-6vvc-3xm2	Apache Santuario - XML Security for Java are vulnerable to private key disclosure	2.2.6 Affected by 0 other vulnerabilities. 2.3.4 Affected by 0 other vulnerabilities. 3.0.3 Affected by 0 other vulnerabilities.
VCID-95nw-fscc-aaaa Aliases: CVE-2021-40690 GHSA-j8wc-gxx9-82hx	Exposure of Sensitive Information to an Unauthorized Actor in Apache Santuario	2.1.7 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 2.2.3 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerability	Summary	Aliases
VCID-f3nz-xu8d-aaar	Uncontrolled Resource Consumption When applying Transforms, remote attackers could cause a denial of service (memory consumption) via crafted Document Type Definitions (DTDs), related to signatures.	CVE-2013-4517 GHSA-4p4w-6h54-g885

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-06-20T16:46:21.315522+00:00	GitLab Importer	Affected by	VCID-8mkv-tade-aaam	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2023-44483.yml	36.1.3
2025-06-20T16:46:19.303177+00:00	GitLab Importer	Affected by	VCID-8mkv-tade-aaam	None	36.1.3
2025-06-20T15:16:55.930693+00:00	GitLab Importer	Affected by	VCID-95nw-fscc-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2021-40690.yml	36.1.3
2025-06-20T15:16:55.662474+00:00	GitLab Importer	Affected by	VCID-95nw-fscc-aaaa	None	36.1.3
2025-06-20T13:46:17.759414+00:00	GitLab Importer	Fixing	VCID-f3nz-xu8d-aaar	None	36.1.3
2025-06-20T13:46:17.650352+00:00	GitLab Importer	Fixing	VCID-f3nz-xu8d-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-4517.yml	36.1.3
2025-06-03T23:24:17.532092+00:00	GitLab Importer	Affected by	VCID-8mkv-tade-aaam	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2023-44483.yml	36.1.0
2025-06-03T23:24:15.456859+00:00	GitLab Importer	Affected by	VCID-8mkv-tade-aaam	None	36.1.0
2025-06-03T21:58:59.530043+00:00	GitLab Importer	Affected by	VCID-95nw-fscc-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2021-40690.yml	36.1.0
2025-06-03T21:58:59.308897+00:00	GitLab Importer	Affected by	VCID-95nw-fscc-aaaa	None	36.1.0
2025-06-03T20:37:14.039684+00:00	GitLab Importer	Fixing	VCID-f3nz-xu8d-aaar	None	36.1.0
2025-06-03T20:37:13.729323+00:00	GitLab Importer	Fixing	VCID-f3nz-xu8d-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-4517.yml	36.1.0
2025-06-02T23:21:44.192494+00:00	GitLab Importer	Affected by	VCID-8mkv-tade-aaam	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2023-44483.yml	36.1.2
2025-06-02T23:21:42.048855+00:00	GitLab Importer	Affected by	VCID-8mkv-tade-aaam	None	36.1.2
2025-06-02T21:44:54.092411+00:00	GitLab Importer	Affected by	VCID-95nw-fscc-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2021-40690.yml	36.1.2
2025-06-02T21:44:53.823918+00:00	GitLab Importer	Affected by	VCID-95nw-fscc-aaaa	None	36.1.2
2025-06-02T20:16:29.345539+00:00	GitLab Importer	Fixing	VCID-f3nz-xu8d-aaar	None	36.1.2
2025-06-02T20:16:29.024001+00:00	GitLab Importer	Fixing	VCID-f3nz-xu8d-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-4517.yml	36.1.2
2025-04-03T21:41:41.453034+00:00	GitLab Importer	Affected by	VCID-8mkv-tade-aaam	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2023-44483.yml	36.0.0
2025-04-03T21:41:36.878913+00:00	GitLab Importer	Affected by	VCID-8mkv-tade-aaam	None	36.0.0
2025-04-03T18:51:30.416530+00:00	GitLab Importer	Affected by	VCID-95nw-fscc-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2021-40690.yml	36.0.0
2025-04-03T18:51:29.715339+00:00	GitLab Importer	Affected by	VCID-95nw-fscc-aaaa	None	36.0.0
2025-04-03T16:24:36.387263+00:00	GitLab Importer	Fixing	VCID-f3nz-xu8d-aaar	None	36.0.0
2025-04-03T16:24:35.776410+00:00	GitLab Importer	Fixing	VCID-f3nz-xu8d-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-4517.yml	36.0.0
2025-02-18T03:38:09.641485+00:00	GitLab Importer	Affected by	VCID-8mkv-tade-aaam	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2023-44483.yml	35.1.0
2025-02-18T03:38:09.298678+00:00	GitLab Importer	Affected by	VCID-8mkv-tade-aaam	None	35.1.0
2025-02-18T00:27:20.880050+00:00	GitLab Importer	Affected by	VCID-95nw-fscc-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2021-40690.yml	35.1.0
2025-02-18T00:27:20.633152+00:00	GitLab Importer	Affected by	VCID-95nw-fscc-aaaa	None	35.1.0
2025-02-17T22:18:42.528069+00:00	GitLab Importer	Fixing	VCID-f3nz-xu8d-aaar	None	35.1.0
2025-02-17T22:18:42.413017+00:00	GitLab Importer	Fixing	VCID-f3nz-xu8d-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-4517.yml	35.1.0
2025-01-17T02:29:15.263289+00:00	GHSA Importer	Fixing	VCID-f3nz-xu8d-aaar	None	35.1.0
2024-11-21T00:58:12.984229+00:00	GitLab Importer	Affected by	VCID-8mkv-tade-aaam	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2023-44483.yml	35.0.0
2024-11-20T23:12:37.993128+00:00	GitLab Importer	Affected by	VCID-95nw-fscc-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2021-40690.yml	35.0.0
2024-11-20T21:53:21.919399+00:00	GitLab Importer	Fixing	VCID-f3nz-xu8d-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-4517.yml	35.0.0
2024-11-19T00:39:46.293898+00:00	GitLab Importer	Affected by	VCID-8mkv-tade-aaam	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2023-44483.yml	34.3.2
2024-11-18T23:00:10.881754+00:00	GitLab Importer	Affected by	VCID-95nw-fscc-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2021-40690.yml	34.3.2
2024-11-18T21:50:45.237664+00:00	GitLab Importer	Fixing	VCID-f3nz-xu8d-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-4517.yml	34.3.2
2024-10-15T18:08:43.836073+00:00	GithubOSV Importer	Fixing	VCID-f3nz-xu8d-aaar	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-4p4w-6h54-g885/GHSA-4p4w-6h54-g885.json	34.0.2
2024-10-08T01:18:57.971343+00:00	GitLab Importer	Affected by	VCID-8mkv-tade-aaam	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2023-44483.yml	34.0.2
2024-10-07T23:59:06.588624+00:00	GitLab Importer	Affected by	VCID-95nw-fscc-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2021-40690.yml	34.0.2
2024-10-07T22:50:14.627384+00:00	GitLab Importer	Fixing	VCID-f3nz-xu8d-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-4517.yml	34.0.2
2024-10-07T21:44:31.332592+00:00	GHSA Importer	Affected by	VCID-8mkv-tade-aaam	https://github.com/advisories/GHSA-xfrj-6vvc-3xm2	34.0.2
2024-10-07T19:48:00.123689+00:00	GHSA Importer	Affected by	VCID-95nw-fscc-aaaa	https://github.com/advisories/GHSA-j8wc-gxx9-82hx	34.0.2
2024-10-07T16:45:29.877336+00:00	GHSA Importer	Fixing	VCID-f3nz-xu8d-aaar	https://github.com/advisories/GHSA-4p4w-6h54-g885	34.0.2
2024-09-23T01:24:39.770169+00:00	GitLab Importer	Affected by	VCID-8mkv-tade-aaam	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2023-44483.yml	34.0.1
2024-09-23T00:13:12.370433+00:00	GitLab Importer	Affected by	VCID-95nw-fscc-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2021-40690.yml	34.0.1
2024-09-22T22:14:02.025251+00:00	GHSA Importer	Affected by	VCID-8mkv-tade-aaam	https://github.com/advisories/GHSA-xfrj-6vvc-3xm2	34.0.1
2024-09-22T20:28:35.500036+00:00	GHSA Importer	Affected by	VCID-95nw-fscc-aaaa	https://github.com/advisories/GHSA-j8wc-gxx9-82hx	34.0.1
2024-09-18T09:08:03.454537+00:00	GithubOSV Importer	Fixing	VCID-f3nz-xu8d-aaar	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-4p4w-6h54-g885/GHSA-4p4w-6h54-g885.json	34.0.1
2024-09-17T22:37:40.527700+00:00	GitLab Importer	Fixing	VCID-f3nz-xu8d-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-4517.yml	34.0.1
2024-09-17T22:00:46.328587+00:00	GHSA Importer	Fixing	VCID-f3nz-xu8d-aaar	https://github.com/advisories/GHSA-4p4w-6h54-g885	34.0.1
2024-04-24T03:54:08.704891+00:00	GitLab Importer	Affected by	VCID-8mkv-tade-aaam	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2023-44483.yml	34.0.0rc4
2024-04-24T03:54:08.338243+00:00	GitLab Importer	Affected by	VCID-8mkv-tade-aaam	None	34.0.0rc4
2024-04-24T02:16:46.501258+00:00	GitLab Importer	Affected by	VCID-95nw-fscc-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2021-40690.yml	34.0.0rc4
2024-04-24T02:16:45.647526+00:00	GitLab Importer	Affected by	VCID-95nw-fscc-aaaa	None	34.0.0rc4
2024-04-24T00:56:51.619605+00:00	GitLab Importer	Fixing	VCID-f3nz-xu8d-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-4517.yml	34.0.0rc4
2024-04-24T00:56:51.377353+00:00	GitLab Importer	Fixing	VCID-f3nz-xu8d-aaar	None	34.0.0rc4
2024-04-24T00:51:12.503424+00:00	GHSA Importer	Affected by	VCID-8mkv-tade-aaam	https://github.com/advisories/GHSA-xfrj-6vvc-3xm2	34.0.0rc4
2024-04-24T00:51:12.090299+00:00	GHSA Importer	Affected by	VCID-8mkv-tade-aaam	None	34.0.0rc4
2024-04-23T23:04:09.840070+00:00	GithubOSV Importer	Fixing	VCID-f3nz-xu8d-aaar	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-4p4w-6h54-g885/GHSA-4p4w-6h54-g885.json	34.0.0rc4
2024-04-23T21:51:52.890199+00:00	GHSA Importer	Affected by	VCID-95nw-fscc-aaaa	https://github.com/advisories/GHSA-j8wc-gxx9-82hx	34.0.0rc4
2024-04-23T21:51:52.234257+00:00	GHSA Importer	Affected by	VCID-95nw-fscc-aaaa	None	34.0.0rc4
2024-04-23T17:57:25.808803+00:00	GHSA Importer	Fixing	VCID-f3nz-xu8d-aaar	None	34.0.0rc4
2024-04-23T17:39:49.419887+00:00	GHSA Importer	Fixing	VCID-f3nz-xu8d-aaar	https://github.com/advisories/GHSA-4p4w-6h54-g885	34.0.0rc4
2024-01-10T06:34:46.765617+00:00	GitLab Importer	Affected by	VCID-8mkv-tade-aaam	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2023-44483.yml	34.0.0rc2
2024-01-10T06:34:46.391885+00:00	GitLab Importer	Affected by	VCID-8mkv-tade-aaam	None	34.0.0rc2
2024-01-10T04:51:20.571724+00:00	GitLab Importer	Affected by	VCID-95nw-fscc-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2021-40690.yml	34.0.0rc2
2024-01-10T04:51:19.722782+00:00	GitLab Importer	Affected by	VCID-95nw-fscc-aaaa	None	34.0.0rc2
2024-01-10T03:20:47.452071+00:00	GitLab Importer	Fixing	VCID-f3nz-xu8d-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-4517.yml	34.0.0rc2
2024-01-10T03:20:47.186651+00:00	GitLab Importer	Fixing	VCID-f3nz-xu8d-aaar	None	34.0.0rc2
2024-01-10T02:58:00.221833+00:00	GHSA Importer	Affected by	VCID-8mkv-tade-aaam	https://github.com/advisories/GHSA-xfrj-6vvc-3xm2	34.0.0rc2
2024-01-10T02:57:59.813295+00:00	GHSA Importer	Affected by	VCID-8mkv-tade-aaam	None	34.0.0rc2
2024-01-09T23:48:17.989312+00:00	GHSA Importer	Affected by	VCID-95nw-fscc-aaaa	https://github.com/advisories/GHSA-j8wc-gxx9-82hx	34.0.0rc2
2024-01-09T23:48:17.316174+00:00	GHSA Importer	Affected by	VCID-95nw-fscc-aaaa	None	34.0.0rc2
2024-01-09T19:53:56.730325+00:00	GHSA Importer	Fixing	VCID-f3nz-xu8d-aaar	https://github.com/advisories/GHSA-4p4w-6h54-g885	34.0.0rc2
2024-01-09T19:53:56.178411+00:00	GHSA Importer	Fixing	VCID-f3nz-xu8d-aaar	None	34.0.0rc2
2024-01-03T23:21:06.053793+00:00	GitLab Importer	Affected by	VCID-8mkv-tade-aaam	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2023-44483.yml	34.0.0rc1
2024-01-03T23:21:05.657716+00:00	GitLab Importer	Affected by	VCID-8mkv-tade-aaam	None	34.0.0rc1
2024-01-03T21:38:52.220365+00:00	GitLab Importer	Affected by	VCID-95nw-fscc-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2021-40690.yml	34.0.0rc1
2024-01-03T21:38:51.295380+00:00	GitLab Importer	Affected by	VCID-95nw-fscc-aaaa	None	34.0.0rc1
2024-01-03T19:58:11.072659+00:00	GitLab Importer	Fixing	VCID-f3nz-xu8d-aaar	None	34.0.0rc1
2024-01-03T19:33:48.928811+00:00	GHSA Importer	Affected by	VCID-95nw-fscc-aaaa	https://github.com/advisories/GHSA-j8wc-gxx9-82hx	34.0.0rc1
2024-01-03T19:33:48.230636+00:00	GHSA Importer	Affected by	VCID-95nw-fscc-aaaa	None	34.0.0rc1
2024-01-03T18:00:33.898030+00:00	GitLab Importer	Fixing	VCID-f3nz-xu8d-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.santuario/xmlsec/CVE-2013-4517.yml	34.0.0rc1
2024-01-03T17:39:10.160608+00:00	GHSA Importer	Fixing	VCID-f3nz-xu8d-aaar	https://github.com/advisories/GHSA-4p4w-6h54-g885	34.0.0rc1
2024-01-03T15:23:33.122627+00:00	GHSA Importer	Fixing	VCID-f3nz-xu8d-aaar	None	34.0.0rc1

Next non-vulnerable version	2.2.6
Latest non-vulnerable version	3.0.3
Risk	4.0