Vuln
·
Scope
Home
Packages
KEV
Critical
Insights
Jobs
Pricing
EN
中
Loading…
pkg:NuGet/
CoreWCF.Primitives
8 total CVEs
CRITICAL
1
HIGH
4
MEDIUM
2
LOW
1
✅ Check your installed version
Check
All known vulnerabilities
CRITICAL
10.0
CVE-2026-54782
CoreWCF: Authentication bypass in CoreWCF SAML 1.1 / 2.0 token signature validation
from 0, < 1.8.1
HIGH
7.4
CVE-2026-54784
CoreWCF: SPNEGO SecurityContextToken proof key wrapped without confidentiality
>= 1.9.0, < 1.9.1
HIGH
7.4
CoreWCF: XML Signature Wrapping in WS-Security endorsing/supporting signature verification allows replay of captured signed messages
from 0, < 1.8.1
HIGH
7.4
CoreWCF: SAML SubjectConfirmation methods and holder-of-key proof keys are not enforced
from 0, < 1.8.1
HIGH
7.4
CoreWCF: SamlSerializer skips SignatureValue verification when SAML signing token is not an X.509 certificate
from 0, < 1.8.1
MEDIUM
5.9
CoreWCF: SAML token replay protection is inoperative
from 0, < 1.8.1
MEDIUM
5.9
CoreWCF: WS-Security signature substitution via document-wide Signature lookup
from 0, < 1.8.1
LOW
3.7
CoreWCF: WS-Security Reference DigestMethod Algorithm-Suite Bypass
from 0, < 1.8.1
CVE-2026-54783
CVE-2026-54781
CVE-2026-54774
CVE-2026-54779
CVE-2026-54773
CVE-2026-54780
NuGet/CoreWCF.Primitives — 8 CVEs · VulnScope