Description

Clever saml2-js 2.0 and earlier may incorrectly utilize the results of XML DOM traversal and canonicalization APIs in such a way that an attacker may be able to manipulate the SAML data without invalidating the cryptographic signature, allowing the attack to potentially bypass authentication to SAML service providers.

Remediation

References

https://duo.com/blog/duo-finds-saml-vulnerabilities-affecting-multiple-implementations

https://www.kb.cert.org/vuls/id/475445

Related Vulnerabilities

CVE-2020-35451 Vulnerability in maven package org.apache.oozie:oozie-tools

CVE-2021-41182 Vulnerability in npm package jquery-ui

CVE-2021-39233 Vulnerability in maven package org.apache.ozone:ozone-main

CVE-2015-9235 Vulnerability in npm package jsonwebtoken

CVE-2019-17554 Vulnerability in maven package org.apache.olingo:odata-server-api

Severity

Critical

Classification

CWE-287 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Exploit Technical Description Third Party Advisory US Government Resource