EPSS
Percentile
70.5%
PySAML2 is vulnerable to XML external entity attacks (XXE). The vulnerability allows remote malicious users to read arbitrary files using a SAMPL XML request or response as the injection vector for the XXE attack.
access.redhat.com/errata/RHSA-2017:0938
access.redhat.com/security/updates/classification/#moderate