Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2017-12869HistorySep 01, 2017 - 1:29 p.m.
CVE-2017-12869
2017-09-0113:29:00
Debian Security Bug Tracker
security-tracker.debian.org
8
0.003 Low
EPSS
Percentile
71.6%
The multiauth module in SimpleSAMLphp 1.14.13 and earlier allows remote attackers to bypass authentication context restrictions and use an authentication source defined in config/authsources.php via vectors related to improper validation of user input.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | simplesamlphp | < 1.14.15-1 | simplesamlphp_1.14.15-1_all.deb |
| Debian | 11 | all | simplesamlphp | < 1.14.15-1 | simplesamlphp_1.14.15-1_all.deb |
| Debian | 10 | all | simplesamlphp | < 1.14.15-1 | simplesamlphp_1.14.15-1_all.deb |
| Debian | 999 | all | simplesamlphp | < 1.14.15-1 | simplesamlphp_1.14.15-1_all.deb |
| Debian | 13 | all | simplesamlphp | < 1.14.15-1 | simplesamlphp_1.14.15-1_all.deb |
Related
osv
osv
CVE-2017-12869
2017-09-01 13:29:00
SimpleSAMLphp Authentication context bypass in the multiauth module
2022-05-14 01:04:19
simplesamlphp - security update
2017-12-12 00:00:00
ubuntucve
ubuntucve
CVE-2017-12869
2017-09-01 00:00:00
prion
prion
Authentication flaw
2017-09-01 13:29:00
cve
cve
CVE-2017-12869
2017-09-01 13:29:00
friendsofphp
friendsofphp
Authentication context bypass (multiauth module)
2017-05-05 10:47:00
veracode
veracode
Execution Of Arbitrary Authentication Source
2017-08-21 08:37:41
cvelist
cvelist
CVE-2017-12869
2017-09-01 13:00:00
github
github
SimpleSAMLphp Authentication context bypass in the multiauth module
2022-05-14 01:04:19
openvas
openvas
Debian: Security Advisory (DLA-1205-1)
2023-03-08 00:00:00
Debian: Security Advisory (DSA-4127-1)
2018-03-01 00:00:00
nessus
nessus
Debian DLA-1205-1 : simplesamlphp security update
2017-12-13 00:00:00
Debian DSA-4127-1 : simplesamlphp - security update
2018-03-05 00:00:00
debian
debian
[SECURITY] [DLA 1205-1] simplesamlphp security update
2017-12-12 10:13:42
[SECURITY] [DSA 4127-1] simplesamlphp security update
2018-03-02 06:16:19
[SECURITY] [DSA 4127-1] simplesamlphp security update
2018-03-02 06:15:39