Description

Clever saml2-js 2.0 and earlier may incorrectly utilize the results of XML DOM traversal and canonicalization APIs in such a way that an attacker may be able to manipulate the SAML data without invalidating the cryptographic signature, allowing the attack to potentially bypass authentication to SAML service providers.

Remediation

References

https://duo.com/blog/duo-finds-saml-vulnerabilities-affecting-multiple-implementations

https://www.kb.cert.org/vuls/id/475445

Related Vulnerabilities

CVE-2019-9737 Vulnerability in npm package editor.md

CVE-2020-7673 Vulnerability in npm package node-extend

CVE-2021-21627 Vulnerability in maven package org.jenkins-ci.plugins:libvirt-slave

CVE-2022-0198 Vulnerability in maven package edu.stanford.nlp:stanford-corenlp

CVE-2022-41946 Vulnerability in maven package org.postgresql:postgresql

Severity

Critical

Classification

CWE-287 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Exploit Technical Description Third Party Advisory US Government Resource