Security Risk Category

ws-security Security Risks

Published vulnerability pages connected to ws-security. One risk can appear in multiple categories while keeping one canonical page.

ws-security risks

Showing 3 of 3 published risks.

mediumEPSS 0.002

CoreWCF WS-Security Document-Wide Signature Lookup Bypass Vulnerability

CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core. Prior to 1.8.1 and 1.9.1, CoreWCF WS-Security signature verification performs a document-wide ds:Signature lookup, allowing an unauthenticated remote attacker to place a SOAP header before wsse:Security and cause WSSecurityOneDotZeroReceiveSecurityHeader to verify an attacker-supplied signature instead of the security header signature. This issue is fixed in versions 1.8.1 and 1.9.1.

CVE-2026-54773corewcfdotnetnugetwcf

Updated Jul 10, 2026

lowEPSS 0.002

CoreWCF WS-Security Weak Digest Algorithm Acceptance Vulnerability

CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core. Prior to 1.8.1 and 1.9.1, the CoreWCF WS-Security 1.0 receive pipeline validates ds:SignedInfo SignatureMethod against the configured SecurityAlgorithmSuite but does not validate each ds:Reference DigestMethod, allowing a sender to use a rejected digest algorithm such as SHA-1 while the message is still accepted. This issue is fixed in versions 1.8.1 and 1.9.1.

CVE-2026-54780corewcfdotnetnugetwcf

Updated Jul 10, 2026

highEPSS 0.001

CoreWCF WS-Security Signature Target Replay Vulnerability

CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core. Prior to 1.8.1 and 1.9.1, CoreWCF WS-Security endorsing and supporting signature verification does not ensure the selected ds:Signature covers the expected Security header target, allowing an attacker with one captured signed SOAP envelope to replay arbitrary service operations as the victim principal. This issue is fixed in versions 1.8.1 and 1.9.1.

CVE-2026-54783corewcfdotnetnugetwcf

Updated Jul 10, 2026