signxml — Vulnerabilities & Security Advisories 2

All 2 CVE vulnerabilities found in signxml, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2025-48995	SignXML's signature verification with HMAC is vulnerable to a timing attack CWE-208	5.9^AI	Medium^AI	2025-06-02
CVE-2025-48994	SignXML's signature verification with HMAC is vulnerable to an algorithm confusion attack CWE-303	9.1^AI	Critical^AI	2025-06-02

All 2 known CVE vulnerabilities affecting signxml with full Chinese analysis, references, and POCs where available.