Description

Clever saml2-js 2.0 and earlier may incorrectly utilize the results of XML DOM traversal and canonicalization APIs in such a way that an attacker may be able to manipulate the SAML data without invalidating the cryptographic signature, allowing the attack to potentially bypass authentication to SAML service providers.

Remediation

References

https://www.kb.cert.org/vuls/id/475445

https://duo.com/blog/duo-finds-saml-vulnerabilities-affecting-multiple-implementations

Related Vulnerabilities

CVE-2019-10375 Vulnerability in maven package hudson.plugins.filesystem_scm:filesystem_scm

CVE-2018-1000408 Vulnerability in maven package org.jenkins-ci.main:jenkins-core

CVE-2018-3737 Vulnerability in npm package sshpk

CVE-2014-3607 Vulnerability in maven package edu.vt.middleware:vt-ldap

CVE-2019-10344 Vulnerability in maven package io.jenkins:configuration-as-code

Severity

Critical

Classification

CWE-287 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

US Government Resource Third Party Advisory Exploit Technical Description