CVE-2022-31261

CVE-2022-31261 concerns Morpheus Data (versions 5.2.16 and 5.4.x prior to 5.4.4) with an XML External Entity (XXE) vulnerability. According to connected Red Hat and NVD records, an attacker must configure a SAML identity provider and know the unique SAML callback ID. A remote attacker can send a ...