Lucene search
+L

5 matches found

Debian
Debian
added 2025/05/09 6:15 p.m.11 views

[SECURITY] [DLA 4161-1] simplesamlphp security update

Debian LTS Advisory DLA-4161-1 [email protected] https://www.debian.org/lts/security/ Tobias Frost May 09, 2025 https://wiki.debian.org/LTS Package : simplesamlphp Version : 1.19.0-1+deb11u2 CVE ID : CVE-2025-27773 Debian Bug : 1100595 A vulnerability has been discovered in SimpleSAMLph...

8.6CVSS5.7AI score0.00296EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/05/09 12:0 a.m.8 views

Debian dla-4161 : simplesamlphp - security update

The remote Debian 11 host has a package installed that is affected by a vulnerability as referenced in the dla-4161 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4161-1 [email protected] https://www.debian.org/lts/security/...

8.6CVSS5.6AI score0.00296EPSS
Exploits0References4
Circl
Circl
added 2025/03/11 7:48 p.m.8 views

CVE-2025-27773

creationtimestamp| type| source ---|---|--- 2025-03-11 19:48:53+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114145527842239250 2025-03-11 20:21:09+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/7223 2025-03-11 20:46:20+00:00| seen|...

8.6CVSS4.8AI score0.00296EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/03/11 7:4 p.m.11 views

CVE-2025-27773 SimpleSAMLphp SAML2 library has incorrect signature verification for HTTP-Redirect binding

The SimpleSAMLphp SAML2 library is a PHP library for SAML2 related functionality. Prior to versions 4.17.0 and 5.0.0-alpha.20, there is a signature confusion attack in the HTTPRedirect binding. An attacker with any signed SAMLResponse via the HTTP-Redirect binding can cause the application to...

8.6CVSS8.5AI score0.00296EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/03/11 7:4 p.m.47 views

CVE-2025-27773 SimpleSAMLphp SAML2 library has incorrect signature verification for HTTP-Redirect binding

The SimpleSAMLphp SAML2 library is a PHP library for SAML2 related functionality. Prior to versions 4.17.0 and 5.0.0-alpha.20, there is a signature confusion attack in the HTTPRedirect binding. An attacker with any signed SAMLResponse via the HTTP-Redirect binding can cause the application to...

8.6CVSS0.00296EPSS
Exploits0References4
Rows per page
Query Builder