System.Security.Cryptography.Xml

NuGet5 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting System.Security.Cryptography.Xmlpage 1 of 1

CVE-2018-0764HIGHCVSS 7.5EG 7.5✓ Fixed in 4.4.2
2018-01-10
vulnerable: 4.4.0, 4.4.0-preview1-25305-02, 4.4.0-preview2-25405-01, 4.4.1
Microsoft .NET Framework 1.1, 2.0, 3.0, 3.5, 3.5.1, 4, 4.5, 4.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2 and 5.7 and .NET Core 1.0. 1.1 and 2.0 allow a denial of service vulnerability due to the way XML documents are processed, aka ".NET and .NET Core …
CVE-2018-0765HIGHCVSS 7.5EG 7.5✓ Fixed in 4.4.2
2018-05-09
vulnerable: 4.4.0, 4.4.0-preview1-25305-02, 4.4.0-preview2-25405-01, 4.4.1
A denial of service vulnerability exists when .NET and .NET Core improperly process XML documents, aka ".NET and .NET Core Denial of Service Vulnerability." This affects Microsoft .NET Framework 2.0, Microsoft .NET Framework 3.0, Microsoft…
CVE-2022-34716MEDIUMCVSS 5.9EG 5.9✓ Fixed in 6.0.1
2022-08-09
vulnerable: 5.0.0, 6.0.0
.NET Spoofing Vulnerability
CVE-2026-26171HIGHCVSS 7.5EG 7.5✓ Fixed in 8.0.3
2026-04-14
vulnerable: 8.0.0, 8.0.1, 8.0.2
Uncontrolled resource consumption in .NET allows an unauthorized attacker to deny service over a network.
CVE-2026-33116HIGHCVSS 7.5EG 7.5✓ Fixed in 8.0.3
2026-04-14
vulnerable: 8.0.0, 8.0.1, 8.0.2
Loop with unreachable exit condition ('infinite loop') in .NET, .NET Framework, Visual Studio allows an unauthorized attacker to deny service over a network.

Check whether System.Security.Cryptography.Xml is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for System.Security.Cryptography.Xml CVEs against the assets you own.

Start Free Scan →