All 2 CVE vulnerabilities found in xmlseclibs, with AI-generated Chinese analysis, references, and POCs.
Vendor: robrichards
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-32313 | xmlseclibs is Missing AES-GCM Authentication Tag Validation on Encrypted Nodes Allows for Unauthorized Decryption CWE-354 | 8.2 | High | 2026-03-13 |
| CVE-2025-66578 | robrichards/xmlseclibs has an Libxml2 Canonicalization error which can bypass Digest/Signature validation CWE-248 | 6.0 | Medium | 2025-12-09 |
All 2 known CVE vulnerabilities affecting xmlseclibs with full Chinese analysis, references, and POCs where available.