CVE

CVE-2020-36563

CVE-2020-36563

XML Digital Signatures generated and validated using this package use SHA-1, which may allow an attacker to craft inputs which cause hash collisions depending on their control over the input.

Source: CVE-2020-36563

Exit mobile version