Saml Security Vulnerabilities - CVSS Score 5 - 6

cve

CVE-2018-1000602

A session fixation vulnerability exists in Jenkins SAML Plugin 1.0.6 and earlier in SamlSecurityRealm.java that allows unauthorized attackers to impersonate another users if they can control the pre-authentication session.

5.9CVSS

5.6AI Score

0.001EPSS

2018-06-26 05:29 PM