Back to search
CVE-2016-10127
Published: Mar 3, 2017
Modified: Aug 6, 2024
PUBLISHED
Description
PySAML2 allows remote attackers to conduct XML external entity (XXE) attacks via a crafted SAML XML request or response.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://github.com/rohe/pysaml2/issues/366
x_refsource_MISC
https://github.com/rohe/pysaml2/pull/379
x_refsource_MISC
[oss-security] 20170119 Re: CVE request: python-pysaml2 XML external entity attack
mailing-list
x_refsource_MLIST
95376
vdb-entry
x_refsource_BID
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=850716
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now