Lucene search
GoogleOSV:PYSEC-2017-67HistoryMar 03, 2017 - 3:59 p.m.
PYSEC-2017-67
2017-03-0315:59:00
Google
osv.dev
8
0.004 Low
EPSS
Percentile
72.1%
PySAML2 allows remote attackers to conduct XML external entity (XXE) attacks via a crafted SAML XML request or response.
References
www.openwall.com/lists/oss-security/2017/01/19/5
www.securityfocus.com/bid/95376
bugs.debian.org/cgi-bin/bugreport.cgi?bug=850716
github.com/advisories/GHSA-m269-wj6g-c459
github.com/rohe/pysaml2/commit/6e09a25d9b4b7aa7a506853210a9a14100b8bc9b
github.com/rohe/pysaml2/issues/366
github.com/rohe/pysaml2/pull/379
Related
cve
cve
CVE-2016-10127
2017-03-03 15:59:00
debian
debian
[SECURITY] [DSA 3759-1] python-pysaml2 security update
2017-01-12 07:25:17
[SECURITY] [DSA 3759-1] python-pysaml2 security update
2017-01-12 07:25:17
nvd
nvd
CVE-2016-10127
2017-03-03 15:59:00
redhatcve
redhatcve
CVE-2016-10127
2017-01-11 09:18:52
ubuntucve
ubuntucve
CVE-2016-10127
2017-03-03 00:00:00
osv
osv
CVE-2016-10127
2017-03-03 15:59:00
PySAML2 XML external entity attack
2022-05-17 02:56:23
prion
prion
Xxe
2017-03-03 15:59:00
cvelist
cvelist
CVE-2016-10127
2017-03-03 15:00:00
github
github
PySAML2 XML external entity attack
2022-05-17 02:56:23
openvas
openvas
Debian Security Advisory DSA 3759-1 (python-pysaml2 - security update)
2017-01-12 00:00:00
veracode
veracode
XML External Entity (XXE)
2016-12-08 05:22:13
debiancve
debiancve
CVE-2016-10127
2017-03-03 15:59:00
nessus
nessus
Debian DSA-3759-1 : python-pysaml2 - security update
2017-01-13 00:00:00