- Description
- SimpleSAMLphp SAML2 library is a PHP library for SAML2 related functionality. When loading an (untrusted) XML document, for example the SAMLResponse, it's possible to induce an XXE. This vulnerability is fixed in 4.6.14 and 5.0.0-alpha.18.
- Source
- security-advisories@github.com
- NVD status
- Received
CVSS 3.1
- Type
- Secondary
- Base score
- 8.3
- Impact score
- 3.7
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
- Severity
- HIGH
- security-advisories@github.com
- CWE-611
- Hype score
- Not currently trending
CVE-2024-52806 SimpleSAMLphp SAML2 library is a PHP library for SAML2 related functionality. When loading an (untrusted) XML document, for example the SAMLResponse, it's possible to… https://t.co/iDpxfHao5M
@CVEnew
2 Dec 2024
313 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2024-52806: HIGH] Stay secure with SimpleSAMLphp SAML2 library updates! Vulnerability in XML document loading (like SAMLResponse) fixed in versions 4.6.14 and 5.0.0-alpha.18. Update now to stay safe.#cybersecurity,#vulnerability https://t.co/BYpUqGQ1zC https://t.co/TEpdAIVhT
@CveFindCom
2 Dec 2024
41 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes