CVE-2019-18632

2019-10-3021:16:38

mitre

www.cve.org

AI Score

9.4

Confidence

High

EPSS

0.003

Percentile

71.0%

JSON

European Commission eIDAS-Node Integration Package before 2.3.1 allows Certificate Faking because an attacker can sign a manipulated SAML response with a forged certificate.

References

sec-consult.com/en/blog/advisories/15587/