The vulnerability of the Security Assertion Markup Language (SAML) implementation in the PAN-OS operating system allows a perpetrator to increase their privileges.

The vulnerability of the Security Assertion Markup Language SAML implementation in the PAN-OS operating system is related to incorrect verification of the cryptographic signature. Exploiting this vulnerability can allow a malicious actor to enhance their privileges remotely, provided that the SAM...

Palo Alto Releases Security Updates for PAN-OS

Palo Alto Networks has released security updates to address a vulnerability affecting the use of Security Assertion Markup Language in PAN-OS. An unauthenticated attacker with network access could exploit this vulnerability to obtain sensitive information. The Cybersecurity and Infrastructure...

Mattermost Server Input Validation Error Vulnerability (CNVD-2020-48226)

Mattermost Server is the United States Mattermost company's set of open source messaging platform. An input validation error vulnerability exists in Mattermost Server versions prior to 4.7.0, prior to 4.6.2, and prior to 4.5.2, which stems from the program's failure to enforce the expiration date...

Aviatrix Systems Controller Data Forgery Issue Vulnerability

Aviatrix Systems Controller is a centralized control panel for business processes and management of Aviatrix Systems solutions from Aviatrix Systems, USA. A security vulnerability exists in Aviatrix Systems Controller 5.1 and prior versions. The vulnerability can be exploited by an attacker to...

keycloak: SAML broker does not check existence of signature on document allowing any user impersonation

It was found that Keycloak's SAML broker did not verify missing message signatures. If an attacker modifies the SAML Response and removes the sections, the message is still accepted, and the message can be modified. An attacker could use this flaw to impersonate other users and gain access to...

SAML Single Sign On Input Validation Error Vulnerability

SAML Single Sign On is a SAML Security Assertion Markup Language single sign-on solution. An input validation error vulnerability exists in SAML Single Sign On SSO. An attacker could exploit this vulnerability to activate a locally disabled user...

CVE-2019-13496

One Identity Cloud Access Manager before 8.1.4 Hotfix 1 allows OTP bypass via vectors involving a man in the middle, the One Identity Defender product, and replacing a failed SAML response with a successful SAML response...

Insecure Randomness

Overview org.pac4j:pac4j-saml is an is PAC4J package for the SAML Protocol. Affected versions of this package are vulnerable to Insecure Randomness. A insecure source of randomness is used to generate all of its random values as it relies upon apache commons lang3 RandomStringUtils. This SAML...

The vulnerability of the SAML broker component of the Keycloak identity and access management software allows a malicious actor to gain unauthorized access to the system.

The vulnerability of the SAML broker component in the Keycloak identity and access management software is related to incorrect authentication processes. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to the system by modifying the SAML...

Cisco Adaptive Security Appliance VPN SAML Authentication Bypass Vulnerability (cisco-sa-20190501-asaftd-saml-vpn)

According to its self-reported version the Cisco Adaptive Security Appliance ASA software running on the remote device is affected by an authentication bypass vulnerability in the implementation of Security Assertion Markup Language SAML 2.0 Single Sign-On SSO for Clientless SSL VPN WebVPN and...

CVE-2018-15913

An issue was discovered in Cloudera Manager 5.x through 5.15.0. One type of page in Cloudera Manager uses a 'returnUrl' parameter to redirect the user to another page in Cloudera Manager once a wizard is completed. The validity of this parameter was not checked. As a result, the user could be...

picketlink: URL injection via xinclude parameter

It was found that Picketlink as shipped with Jboss Enterprise Application Platform 7.2 would accept an xinclude parameter in SAMLresponse XML. An attacker could use this flaw to send a URL to achieve cross-site scripting or possibly conduct further attacks...

CVE-2019-1714

A vulnerability in the implementation of Security Assertion Markup Language SAML 2.0 Single Sign-On SSO for Clientless SSL VPN WebVPN and AnyConnect Remote Access VPN in Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated,...

PT-2019-2120 · Cisco · Cisco Asa +1

Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliance versions prior to the fixed version Cisco Firepower Threat Defense versions prior to the fixed version Description: The issue is related to improper credential management when using NT LAN Manager NTLM or bas...

The vulnerability of the register_hooks() function in the Apache HTTP Server’s web server, related to the possibility of bypassing authentication, allows attackers to circumvent existing access control mechanisms.

The vulnerability of the registerhooks function modauthmellon in the Apache HTTP Server is related to the possibility of bypassing authentication by executing a special SAML ECP. Exploiting this vulnerability allows a malicious actor to circumvent existing access control mechanisms by using...

mod_auth_mellon: authentication bypass in ECP flow

A vulnerability was found in modauthmellon. If Apache is configured as a reverse proxy and modauthmellon is configured to only let through authenticated users with the require valid-user directive, adding special HTTP headers that are normally used to start the special SAML ECP non-browser based...

The vulnerability relates to the implementation of Security Assertion Markup Language (SAML) for single-sign-on authentication in the integrated messaging system Cisco Unity Connection. This vulnerability allows attackers to perform cross-site scripting attacks.

The vulnerability of the Security Assertion Markup Language SAML authentication mechanism for Single Sign-On SSO in the integrated Cisco Unity Connection messaging system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor,...

PT-2019-1501 · Cisco · Cisco Unity Connection

Name of the Vulnerable Software and Affected Versions: Cisco Unity Connection version 12.5 Description: A vulnerability in the Security Assertion Markup Language SAML single sign-on SSO interface could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against ...

The vulnerability affects the implementation of Security Assertion Markup Language, a mechanism for authentication in software-based secure mobile access solutions from Cisco. This vulnerability allows attackers to bypass the authentication process.

The vulnerability of the Security Assertion Markup Language SAML authentication mechanism for Single Sign-On SSO in Cisco AnyConnect Secure Mobility Client, Cisco Adaptive Security Appliance ASA, and Cisco Firepower Threat Defense FTD is related to improper session management. Exploiting this...

keycloak: auth permitted with expired certs in SAML client

It was found that SAML authentication in Keycloak 3.4.3.Final incorrectly authenticated expired certificates. A malicious user could use this to access unauthorized data or possibly conduct further attacks...