QwikSec

Security Database

CVE

CWE

Training

CVE-2015-5301

Published: Nov 17, 2015

Modified: Aug 6, 2024

PUBLISHED

Description

providers/saml2/admin.py in the Identity Provider (IdP) server in Ipsilon 0.1.0 before 1.0.2 and 1.1.x before 1.1.1 does not properly check permissions, which allows remote authenticated users to cause a denial of service by deleting a SAML2 Service Provider (SP).

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://fedorahosted.org/ipsilon/wiki/Releases/v1.0.2

x_refsource_CONFIRM

FEDORA-2015-15290

vendor-advisory

x_refsource_FEDORA

FEDORA-2015-15291

vendor-advisory

x_refsource_FEDORA

FEDORA-2015-15292

vendor-advisory

x_refsource_FEDORA

[oss-security] 20151027 Multiple CVE info for Ipsilon

mailing-list

x_refsource_MLIST

https://fedorahosted.org/ipsilon/wiki/Releases/v1.1.1

x_refsource_CONFIRM

https://pagure.io/ipsilon/9dec97c3c83928d231ea10f4160523a13803e594

x_refsource_CONFIRM

https://bugzilla.redhat.com/show_bug.cgi?id=1271530

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.