Vulnerability Details CVE-2020-7711
This affects all versions of package github.com/russellhaering/goxmldsig. There is a crash on nil-pointer dereference caused by sending malformed XML signatures.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 64.6%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
Products affected by CVE-2020-7711
-
cpe:2.3:a:goxmldsig_project:goxmldsig:-
-
cpe:2.3:a:goxmldsig_project:goxmldsig:1.1.0