Vigil@nce - Vigil@nce - Apache Santuario XML Security for Java: file reading via KeyInfo SecureValidation XPath Transform, analyzed on 17/09/2021
November 2021 by Vigil@nce
Vigil@nce - An attacker can read a file of Apache Santuario XML Security for Java, via KeyInfo SecureValidation XPath Transform, in order to obtain sensitive information.
Plus d'information sur : https://vigilance.fr/vulnerability/Apache-Santuario-XML-Security-for-Java-file-reading-via-KeyInfo-SecureValidation-XPath-Transform-36452