CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17 matches found

NVD•added 2026/05/21 12:16 a.m.•5 views

CVE-2026-40165

authentik is an open-source identity provider. Versions 2025.12.4 and prior, and versions 2026.2.0-rc1 through 2026.2.2 were vulnerable to Authentication Bypass through SAML NameID XML Comment Injection. Due to how authentik extracted the NameID value from a SAML assertion, it was possible for an...

8.7CVSS0.0002EPSS

Exploits0References3

ATTACKERKB•added 2026/05/20 11:35 p.m.•2 views

CVE-2026-40165

8.7CVSS5.7AI score0.0002EPSS

Exploits0References4Affected Software1

Vulnrichment•added 2026/05/20 11:35 p.m.•3 views

CVE-2026-40165 authentik: SAML NameID XML Comment Injection Enables Authentication Bypass via Identifier Truncation

8.7CVSS5.7AI score0.0002EPSS

Exploits0References3

NVD•added 2021/05/28 11:15 a.m.•11 views

CVE-2020-27826

A flaw was found in Keycloak before version 12.0.0 where it is possible to update the user's metadata attributes using Account REST API. This flaw allows an attacker to change its own NameID attribute to impersonate the admin user for any particular application...

4.9CVSS0.00166EPSS

Exploits0References1

RedHat Linux•added 2020/12/15 5:7 p.m.•2 views

keycloak: Account REST API can update user metadata attributes

4.9CVSS5.7AI score0.00166EPSS

Exploits0References4

RedhatCVE•added 2020/12/07 5:29 p.m.•27 views

CVE-2020-27826

4.9CVSS5.1AI score0.00166EPSS

Exploits0References3

OSV•added 2020/01/24 9:28 p.m.•22 views

GHSA-GP2M-7CFP-H6GF Incorrect persistent NameID generation in SimpleSAMLphp

Background When a SimpleSAMLphp Identity Provider is misconfigured, a bug in the software when trying to build a persistent NameID to univocally identify the authenticating subject could cause different users to get the same identifier generated, depending on the attributes available for them rig...

9.8CVSS9.2AI score0.00725EPSS

Exploits0References7

Github Security Blog•added 2020/01/24 9:28 p.m.•63 views

Incorrect persistent NameID generation in SimpleSAMLphp

9.8CVSS0.6AI score0.00725EPSS

Exploits0References8Affected Software1

Veracode•added 2018/01/03 4:54 a.m.•12 views

XML Signature Wrapping

Samlify and express-saml2 are vulnerable to XML signature wrapping attacks. Attackers who observe SAML responses are able to add NameID's to the response without breaking the signature check. This could allow them to login as any user...

7.5CVSS7.3AI score0.00136EPSS

Exploits0References2Affected Software2

OSV•added 2017/09/01 9:29 p.m.•1 views

DEBIAN-CVE-2017-12873

SimpleSAMLphp 1.7.0 through 1.14.10 might allow attackers to obtain sensitive information, gain unauthorized access, or have unspecified other impacts by leveraging incorrect persistent NameID generation when an Identity Provider IdP is misconfigured...

9.8CVSS9.6AI score0.00725EPSS

Exploits0References1

UbuntuCve•added 2017/09/01 9:29 p.m.•19 views

CVE-2017-12873

9.8CVSS7.2AI score0.00725EPSS

Exploits0References2

OSV•added 2017/09/01 9:29 p.m.•16 views

CVE-2017-12873

9.8CVSS7AI score

Exploits0References4

Prion•added 2017/09/01 9:29 p.m.•12 views

Code injection

7.5CVSS9.6AI score0.00725EPSS

Exploits0References4Affected Software2

OSV•added 2017/09/01 9:29 p.m.•0 views

UBUNTU-CVE-2017-12873

9.8CVSS7.3AI score0.00725EPSS

Exploits0References3

Debian CVE•added 2017/09/01 9:0 p.m.•15 views

CVE-2017-12873

9.8CVSS9.8AI score0.00725EPSS

Exploits0

CVE•added 2017/09/01 9:0 p.m.•86 views

CVE-2017-12873

SimpleSAMLphp 1.7.0–1.14.10 is affected by CVE-2017-12873 due to an incorrect persistent NameID generation when an Identity Provider (IdP) is misconfigured. This could allow attackers to obtain sensitive information or gain unauthorized access, depending on deployment specifics. The vulnerability...

9.8CVSS9.5AI score0.00725EPSS

Exploits0References4Affected Software1