CVE-2025-29774
xml-crypto Vulnerable to XML Signature Verification Bypass via Multiple SignedInfo References
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
xml-crypto is an XML digital signature and encryption library for Node.js. An attacker may be able to exploit a vulnerability in versions prior to 6.0.1, 3.2.1, and 2.1.6 to bypass authentication or authorization mechanisms in systems that rely on xml-crypto for verifying signed XML documents. The vulnerability allows an attacker to modify a valid signed XML message in a way that still passes signature verification checks. For example, it could be used to alter critical identity or access control attributes, enabling an attacker with a valid account to escalate privileges or impersonate another user. Users of versions 6.0.0 and prior should upgrade to version 6.0.1 to receive a fix. Those who are still using v2.x or v3.x should upgrade to patched versions 2.1.6 or 3.2.1, respectively.
CVSS Scores
SSVC
- Decision:Attend
Timeline
- 2025-03-11 CVE Reserved
- 2025-03-14 CVE Published
- 2025-03-14 CVE Updated
- 2025-03-15 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-347: Improper Verification of Cryptographic Signature
CAPEC
References (7)
URL | Tag | Source |
---|---|---|
https://github.com/node-saml/xml-crypto/commit/28f92218ecbb8dcbd238afa4efbbd50302aa9aed | X_refsource_misc | |
https://github.com/node-saml/xml-crypto/commit/886dc63a8b4bb5ae1db9f41c7854b171eb83aa98 | X_refsource_misc | |
https://github.com/node-saml/xml-crypto/commit/8ac6118ee7978b46aa56b82cbcaa5fca58c93a07 | X_refsource_misc | |
https://github.com/node-saml/xml-crypto/releases/tag/v2.1.6 | X_refsource_misc | |
https://github.com/node-saml/xml-crypto/releases/tag/v3.2.1 | X_refsource_misc | |
https://github.com/node-saml/xml-crypto/releases/tag/v6.0.1 | X_refsource_misc | |
https://github.com/node-saml/xml-crypto/security/advisories/GHSA-9p8x-f768-wp2g | X_refsource_confirm |
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Node-saml Search vendor "Node-saml" | Xml-crypto Search vendor "Node-saml" for product "Xml-crypto" | >= 4.0.0 < 6.0.1 Search vendor "Node-saml" for product "Xml-crypto" and version " >= 4.0.0 < 6.0.1" | en |
Affected
| ||||||
Node-saml Search vendor "Node-saml" | Xml-crypto Search vendor "Node-saml" for product "Xml-crypto" | >= 3.0.0 < 3.2.1 Search vendor "Node-saml" for product "Xml-crypto" and version " >= 3.0.0 < 3.2.1" | en |
Affected
| ||||||
Node-saml Search vendor "Node-saml" | Xml-crypto Search vendor "Node-saml" for product "Xml-crypto" | < 2.1.6 Search vendor "Node-saml" for product "Xml-crypto" and version " < 2.1.6" | en |
Affected
|