Lucene search

CVE-2020-5261

🗓️ 25 Mar 2020 02:11:15Reported by GitHub_MType

Saml2 Authentication services for ASP.NET (NuGet package Sustainsys.Saml2) has faulty Token Replay Detection

Reporter	Title	Published	Views	Family All 9
NVD	CVE-2020-5261	25 Mar 202002:15	–	nvd
OSV	Missing Token Replay Detection in Saml2 Authentication services for ASP.NET	25 Mar 202016:52	–	osv
OSV	CVE-2020-5261	25 Mar 202002:15	–	osv
Cvelist	CVE-2020-5261 Missing Token Replay Detection	25 Mar 202001:15	–	cvelist
Github Security Blog	Missing Token Replay Detection in Saml2 Authentication services for ASP.NET	25 Mar 202016:52	–	github
RedhatCVE	CVE-2020-5261	5 Feb 202515:37	–	redhatcve
AttackerKB	CVE-2020-5261	25 Mar 202000:00	–	attackerkb
Veracode	Replay Attack	26 Mar 202005:34	–	veracode
Prion	Authentication flaw	25 Mar 202002:15	–	prion

Nvd

Vulners

Node

sustainsys saml2Range2.0.0–2.5.0

[
  {
    "product": "Saml2",
    "vendor": "Sustainsys",
    "versions": [
      {
        "status": "affected",
        "version": ">= 2.0.0, < 2.5.0"
      }
    ]
  }
]

Source	Link
github	www.github.com/Sustainsys/Saml2/commit/e58e0a1aff2b1ead6aca080b7cdced55ee6d5241
github	www.github.com/Sustainsys/Saml2/security/advisories/GHSA-g6j2-ch25-5mmv
github	www.github.com/Sustainsys/Saml2/issues/711

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

25 Mar 2020 02:15Current

6.9Medium risk

Vulners AI Score6.9

CVSS24.9

CVSS36.8 - 8.2

EPSS0.00285

CWE-294