Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 8:37 a.m.6 views

CVE-2019-18632

European Commission eIDAS-Node Integration Package before 2.3.1 allows Certificate Faking because an attacker can sign a manipulated SAML response with a forged certificate...

9.8CVSS6.9AI score0.00765EPSS
Exploits1References1
NVD
NVD
added 2023/06/22 7:15 p.m.11 views

CVE-2023-34923

XML Signature Wrapping XSW in SAML-based Single Sign-on feature in TOPdesk v12.10.12 allows bad actors with credentials to authenticate with the Identity Provider IP to impersonate any TOPdesk user via SAML Response manipulation...

8.1CVSS8.1AI score0.00741EPSS
Exploits1References2
OSV
OSV
added 2023/06/22 7:15 p.m.3 views

CVE-2023-34923

XML Signature Wrapping XSW in SAML-based Single Sign-on feature in TOPdesk v12.10.12 allows bad actors with credentials to authenticate with the Identity Provider IP to impersonate any TOPdesk user via SAML Response manipulation...

8.1CVSS5.8AI score0.00741EPSS
Exploits1References2
Prion
Prion
added 2023/06/22 7:15 p.m.16 views

Code injection

XML Signature Wrapping XSW in SAML-based Single Sign-on feature in TOPdesk v12.10.12 allows bad actors with credentials to authenticate with the Identity Provider IP to impersonate any TOPdesk user via SAML Response manipulation...

5.5CVSS8AI score0.00741EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2023/06/22 12:0 a.m.39 views

CVE-2023-34923

TOPdesk CVE-2023-34923 involves XML Signature Wrapping (XSW) in the SAML-based SSO of TOPdesk v12.10.12. The vulnerability affects the SAML Response handling and, per the description, allows attackers with valid credentials to authenticate with the Identity Provider and impersonate any TOPdesk us...

8.1CVSS7.9AI score0.00741EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder