In Moov signedxml through 1.0.0,... CVE-2023-34205

- AV AC AU C I A
发布: 2023-05-30
修订: 2023-06-07

In Moov signedxml through 1.0.0, parsing the raw XML (as received) can result in different output than parsing the canonicalized XML. Thus, signature validation can be bypassed via a Signature Wrapping attack (aka XSW).

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有1条受影响产品信息