Forums, Documentation & Knowledge Base - ComponentSpace

Vulnerability Note VU#475445


https://componentspace.com/Forums/Topic8572.aspx

By ComponentSpace - 3/7/2018

Vulnerability Note VU#475445
Multiple SAML libraries may allow authentication bypass via incorrect XML canonicalization and DOM traversal.
https://www.kb.cert.org/vuls/id/475445
https://duo.com/blog/duo-finds-saml-vulnerabilities-affecting-multiple-implementations
https://www.componentspace.com/Forums/8565/Vulnerability-Note-VU475445
ComponentSpace can confirm that no versions of its SAML products are affected by this vulnerability.
No action is required.