Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

CVE-2012-5353

🗓️ 09 Oct 2012 23:05:55Reported by mitreType 
cve
 cve🔗 web.nvd.nist.gov👁 24 Views

Eduserv OpenAthens SP 2.0 for Java allows remote attackers to forge messages and bypass authentication via a SAML assertion that lacks a Signature element, aka a "Signature exclusion attack.

Show more
Related
Detection
Refs
ReporterTitlePublishedViews
Family
Cvelist		CVE-2012-5353
9 Oct 201223:00
cvelist
Prion		Authentication flaw
9 Oct 201223:55
prion
NVD		CVE-2012-5353
9 Oct 201223:55
nvd
Nvd
Node
eduservopenathens_service_providerMatch2.0-java

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
09 Oct 2012 23:55Current
7.2High risk
Vulners AI Score7.2
CVSS25.8
EPSS0.00155
CWE-287
eduservopenathenssp 2.0javaremote attackersauthentication bypasssaml assertionsignature exclusion attackcve-2012-5353nvd
24
.json
Report