{"vulnerability": "CVE-2025-29774", "sightings": [{"uuid": "2a94ed6f-777c-4233-afaf-56b45bd9da3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-29774", "type": "published-proof-of-concept", "source": "Telegram/pRPgTuKpNgH7y7yHOR5VIq4CCObEljNgHBGQunGS6T0fn0Q", "content": "", "creation_timestamp": "2025-03-14T19:00:48.000000Z"}, {"uuid": "51e09291-4259-4f4d-ad34-6d8fa22098fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-29774", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lkei5wy3vz2w", "content": "", "creation_timestamp": "2025-03-14T20:46:20.773139Z"}, {"uuid": "021bc106-90a2-4864-885e-6c0af6b27445", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-29774", "type": "seen", "source": "https://bsky.app/profile/securestep9.bsky.social/post/3lkodkdhuag2g", "content": "", "creation_timestamp": "2025-03-18T18:50:25.199733Z"}, {"uuid": "b6999dd4-65cf-4f68-b5ff-692189b5c46c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-29774", "type": "seen", "source": "https://bsky.app/profile/securitylab-jp.bsky.social/post/3ll3umjqfp22d", "content": "", "creation_timestamp": "2025-03-24T04:00:31.072923Z"}, {"uuid": "ef3c2a66-d814-425d-9e4b-c570cc0ecf40", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-29774", "type": "published-proof-of-concept", "source": "Telegram/4bg_Vtt-c2g6B5f0tuhNllyXVx8wqByVM4qaJsK1Ar8yXTY", "content": "", "creation_timestamp": "2025-07-23T15:00:12.000000Z"}, {"uuid": "512bad12-1961-4499-8359-b1b6a39638a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-29774", "type": "seen", "source": "https://t.me/cvedetector/20314", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-29774 - Apache xml-crypto Signature Bypass Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-29774 \nPublished : March 14, 2025, 5:15 p.m. | 19\u00a0minutes ago \nDescription : xml-crypto is an XML digital signature and encryption library for Node.js. An attacker may be able to exploit a vulnerability in versions prior to 6.0.1, 3.2.1, and 2.1.6 to bypass authentication or authorization mechanisms in systems that rely on xml-crypto for verifying signed XML documents. The vulnerability allows an attacker to modify a valid signed XML message in a way that still passes signature verification checks. For example, it could be used to alter critical identity or access control attributes, enabling an attacker with a valid account to escalate privileges or impersonate another user. Users of versions 6.0.0 and prior should upgrade to version 6.0.1 to receive a fix. Those who are still using v2.x or v3.x should upgrade to patched versions 2.1.6 or 3.2.1, respectively. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-14T19:13:10.000000Z"}, {"uuid": "0ac9c337-3389-4bbc-b91e-32aff7795547", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-29774", "type": "seen", "source": "https://t.me/anti_malware/20073", "content": "\ud83d\udea8 XML-\u043f\u043e\u0434\u043f\u0438\u0441\u0438 \u043f\u043e\u0434 \u0430\u0442\u0430\u043a\u043e\u0439! \u041e\u0431\u043d\u043e\u0432\u043b\u044f\u0439\u0442\u0435\u0441\u044c \u0441\u0440\u043e\u0447\u043d\u043e!\n\n\u0420\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0438 xml-crypto \u0437\u0430\u043b\u0430\u0442\u0430\u043b\u0438 \u0434\u0432\u0435 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 (CVE-2025-29774 \u0438 CVE-2025-29775, \ud83d\udd25 9,3 \u0431\u0430\u043b\u043b\u0430 \u043f\u043e CVSS), \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u043b\u0438 \u0445\u0430\u043a\u0435\u0440\u0430\u043c \u0442\u0432\u043e\u0440\u0438\u0442\u044c \u0431\u0435\u0441\u043f\u0440\u0435\u0434\u0435\u043b \u0441 XML-\u043f\u043e\u0434\u043f\u0438\u0441\u044f\u043c\u0438:\n\n\ud83d\udd39 \u041f\u043e\u0432\u044b\u0448\u0430\u0442\u044c \u043f\u0440\u0430\u0432\u0430 \u0432 \u0441\u0438\u0441\u0442\u0435\u043c\u0435 \u2b06\ufe0f\n\ud83d\udd39 \u041f\u0440\u0438\u0442\u0432\u043e\u0440\u044f\u0442\u044c\u0441\u044f \u0434\u0440\u0443\u0433\u0438\u043c\u0438 \u044e\u0437\u0435\u0440\u0430\u043c\u0438 \ud83c\udfad", "creation_timestamp": "2025-03-19T14:31:08.000000Z"}, {"uuid": "c6fdb0e4-0d62-4818-83f8-eb2510b1b2be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-29774", "type": "seen", "source": "https://bsky.app/profile/cyberalerts.bsky.social/post/3lkeb4sgac42p", "content": "", "creation_timestamp": "2025-03-14T18:40:25.402965Z"}, {"uuid": "2d29dcb9-6869-4467-8cbb-dfddc2f3eac9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-29774", "type": "seen", "source": "https://bsky.app/profile/andranglin.bsky.social/post/3lkq2tmw23k2a", "content": "", "creation_timestamp": "2025-03-19T11:19:54.211721Z"}, {"uuid": "7007e145-6b34-4d8c-b184-7e87c3eb8b6f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-29774", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/45084", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aHow CVE-2025-29774 Vulnerabilities and the SIGHASH_SINGLE Bug Threaten Multi-Signature Wallet Operational Methods with Fake RawTX\nURL\uff1ahttps://github.com/demining/Digital-Signature-Forgery-Attack\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-07-23T12:51:40.000000Z"}, {"uuid": "106067a7-a348-407d-bd1e-e20dfd08b955", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-29774", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/45113", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aHow CVE-2025-29774 Vulnerabilities and the SIGHASH_SINGLE Bug Threaten Multi-Signature Wallet Operational Methods with Fake RawTX\nURL\uff1ahttps://github.com/Kamal-Hegazi/CVE-2025-53770-SharePoint-RCE\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-07-23T18:22:37.000000Z"}]}