{"package":"System.Security.Cryptography.Xml","ecosystem":"nuget","latest_version":"11.0.0-preview.3.26207.106","description":"Provides classes to support the creation and validation of XML digital signatures. The classes in this namespace implement the World Wide Web Consortium Recommendation, \"XML-Signature Syntax and Processing\", described at http://www.w3.org/TR/xmldsig-core/.\n\nCommonly Used Types:\nSystem.Security.Cryptography.Xml.CipherData\nSystem.Security.Cryptography.Xml.CipherReference\nSystem.Security.Cryptography.Xml.DataObject\nSystem.Security.Cryptography.Xml.DataReference\nSystem.Security.Cryptography.Xml.DSAK","license":"MIT","homepage":"https://dot.net/","repository":"https://dot.net/","downloads_weekly":7169189,"health":{"score":62,"risk":"moderate","breakdown":{"maintenance":25,"popularity":17,"security":3,"maturity":15,"community":2},"deprecated":false,"max_score":100},"vulnerabilities":{"count":5,"critical":0,"high":4,"medium":1,"low":0,"details":[{"vuln_id":"CVE-2018-0765","severity":"high","summary":"Denial of service vulnerability exists when .NET and .NET Core improperly process XML documents","affected_versions":">=0","fixed_version":"4.4.2","source":"osv","published_at":"2018-10-16T19:54:06Z","in_kev":false,"epss_prob":0.0991,"epss_percentile":0.93027,"threat_tier":"theoretical"},{"vuln_id":"CVE-2026-33116","severity":"high","summary":"Microsoft Security Advisory CVE-2026-33116 – .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability ","affected_versions":">=8.0.0","fixed_version":"8.0.3","source":"osv","published_at":"2026-04-14T23:30:27Z","in_kev":false,"epss_prob":0.00784,"epss_percentile":0.73798,"threat_tier":"theoretical"},{"vuln_id":"CVE-2018-0764","severity":"high","summary":"Denial of service vulnerability exists when .NET and .NET Core improperly process XML documents","affected_versions":">=0","fixed_version":"4.4.2","source":"osv","published_at":"2018-10-16T17:34:00Z","in_kev":false,"epss_prob":0.34677,"epss_percentile":0.97025,"threat_tier":"theoretical"},{"vuln_id":"BIT-dotnet-2022-34716","severity":"medium","summary":".NET Information Disclosure Vulnerability","affected_versions":">=6.0.0","fixed_version":"6.0.8","source":"osv","published_at":"2024-02-03T00:47:54Z","in_kev":false,"threat_tier":"unknown"},{"vuln_id":"CVE-2026-26171","severity":"high","summary":"Microsoft Security Advisory CVE-2026-26171 – .NET Denial of Service Vulnerability ","affected_versions":">=8.0.0","fixed_version":"8.0.3","source":"osv","published_at":"2026-04-14T23:31:08Z","in_kev":false,"epss_prob":0.00504,"epss_percentile":0.66204,"threat_tier":"theoretical"}],"actively_exploited_count":0,"likely_exploited_count":0},"versions":{"latest":"11.0.0-preview.3.26207.106","total_count":122,"recent":["10.0.0-preview.1.25080.5","10.0.0-preview.2.25163.2","10.0.0-preview.3.25171.5","10.0.0-preview.4.25258.110","10.0.0-preview.5.25277.114","10.0.0-preview.6.25358.103","10.0.0-preview.7.25380.108","10.0.0-rc.1.25451.107","10.0.0-rc.2.25502.107","10.0.0","10.0.1","10.0.2","10.0.3","10.0.4","10.0.5","10.0.6","10.0.7","11.0.0-preview.1.26104.118","11.0.0-preview.2.26159.112","11.0.0-preview.3.26207.106"]},"metadata":{"deprecated":false,"deprecated_message":null,"maintainers_count":1,"first_published":null,"last_published":"2026-04-14T15:58:20.04+00:00","dependencies_count":1,"dependencies":["Microsoft.Bcl.Cryptography"]},"bundle":null,"typescript":null,"known_issues":{"bugs_count":0,"bugs_severity":{},"status_breakdown":{},"link":null,"scope":"none"},"recommendation":{"action":"update_required","issues":["4 high severity vulnerabilities"],"use_version":"11.0.0-preview.3.26207.106","version_hint":"Update to >= 8.0.3 to fix known vulnerabilities","summary":"System.Security.Cryptography.Xml@11.0.0-preview.3.26207.106 has vulnerabilities — update to latest"},"requested_version":null,"_cache":"miss","_response_ms":803,"_powered_by":"depscope.dev — free package intelligence for AI agents","typosquat":{"is_suspected":false},"maintainer_trust":{"available":false},"malicious":{"is_malicious":false},"scorecard":{"available":false},"quality":{"available":false}}