Apache Santuario - CVE CyberSecurity Database News

Oct 20, 2023 API Java Apache Apache Software Foundation Apache Santuario

CVE-2023-44483: Private Key Disclosure Vulnerability in Apache Santuario - XML Security for Java (Versions Prior to 2.2.6, 2.3.4, and 3..3) Using JSR 105 API

INTRODUCTION A significant vulnerability (CVE-2023-44483) has been discovered in Apache Santuario - XML Security for Java that impacts all its versions prior to 2.2.