CVEs (1)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Shibboleth 2Opensaml Shibboleth Identity ProviderApr 29, 2026 Sep 2, 2011 N/A· v4 N/A· v3 5.8 MEDIUM· v2 Shibboleth OpenSAML library 2.4.x before 2.4.3 and 2.5.x before 2.5.1, and IdP before 2.3.2, allows remote attackers to forge messages and bypass authentication via an "XML Signature wrapping attack." |