Lucene search
Cas Server Security Vulnerabilities
cve
XML external entity (XXE) vulnerability in java/org/jasig/cas/util/SamlUtils.java in Jasig CAS server before 3.4.12.1 and 3.5.x before 3.5.2.1, when Google Accounts Integration is enabled, allows remote unauthenticated users to bypass authentication via crafted XML...
8.8CVSS
8.8AI Score
0.004EPSS
2018-07-20 05:29 PM
23