3 matches found
CVE-2021-3196
An issue was discovered in Hitachi ID Bravura Security Fabric 11.0.0 through 11.1.3, 12.0.0 through 12.0.2, and 12.1.0. When using federated identity management authenticating via SAML through a third-party identity provider, an attacker can inject additional data into a signed SAML response bein...
CVE-2021-3196
Hitachi ID Bravura Security Fabric is affected (versions 11.0.0–11.1.3, 12.0.0–12.0.2, 12.1.0). The root cause is that, during federated identity management via SAML, an attacker can inject extra data into a signed SAML response and the service provider uses the unsigned values, enabling imperson...
CVE-2021-3196
An issue was discovered in Hitachi ID Bravura Security Fabric 11.0.0 through 11.1.3, 12.0.0 through 12.0.2, and 12.1.0. When using federated identity management authenticating via SAML through a third-party identity provider, an attacker can inject additional data into a signed SAML response bein...