Lucene search

Veracode Vulnerability DatabaseVERACODE:5596

HistoryDec 20, 2017 - 8:04 a.m.

Authentication Bypass

2017-12-2008:04:09

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

JSON

pysaml2 is vulnerable to authenticable bypass. The vulnerability exists as asserts are ignored when python is run with optimization options, -O, -OO, or with the PYTHONOPTIMIZE environment variable. This causes the UsernamePasswordMako class to accept any password for any valid user.

CPENameOperatorVersion
pysaml2le4.4.0
python-pysaml2:stretcheq3.0.0-5+deb9u1

CPE	Name	Operator	Version
	pysaml2	le	4.4.0
	python-pysaml2:stretch	eq	3.0.0-5+deb9u1

References

bugzilla.redhat.com/show_bug.cgi?id=1516162

github.com/rohe/pysaml2/commit/6312a41e037954850867f29d329e5007df1424a5

github.com/rohe/pysaml2/issues/451

lists.debian.org/debian-lts-announce/2018/07/msg00000.html

lists.debian.org/debian-lts-announce/2021/02/msg00038.html

security.gentoo.org/glsa/201801-11

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

JSON

Related for VERACODE:5596