Lucene search

K

IdentityPython Security Vulnerabilities

cve
cve

CVE-2021-21238

PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. All users of pysaml2 that need to validate signed SAML documents are impacted. The vulnerability is a variant of XML Signature wrapping...

6.5CVSS

6.1AI Score

0.001EPSS

2021-01-21 03:15 PM
74
2
cve
cve

CVE-2021-21239

PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default CryptoBackendXmlSec1 backend and need to verify signed SAML documents are impacted. PySAML2 does not....

6.5CVSS

6.3AI Score

0.002EPSS

2021-01-21 03:15 PM
178
5