Robrichards/xmlseclibs
This hub aggregates every CVE we track for Robrichards/xmlseclibs, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
3
CVEs tracked
0
Critical
2
High
0
In CISA KEV
Severity distribution
HIGH2MEDIUM1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
1
0
0
1
0
0
0
2024-072026-06
Latest CVEs
The 3 most recently published vulnerabilities affecting Robrichards/xmlseclibs.
- CVE-2026-32313xmlseclibs is Missing AES-GCM Authentication Tag Validation on Encrypted Nodes Allows for Unauthorized Decryption8.2
- CVE-2025-66578robrichards/xmlseclibs has an Libxml2 Canonicalization error which can bypass Digest/Signature validation6.0
- CVE-2019-3465Rob Richards XmlSecLibs, all versions prior to v3.0.3, as used for example by SimpleSAMLphp, performed incorrect validation of cryptographic signatures in XML messages, allowing an authenticated at...8.8
Product normalization is registry-driven with AI assist and human review. How it works