Back to search
CVE-2017-12869
Published: Sep 1, 2017
Modified: Aug 5, 2024
PUBLISHED
Description
The multiauth module in SimpleSAMLphp 1.14.13 and earlier allows remote attackers to bypass authentication context restrictions and use an authentication source defined in config/authsources.php via vectors related to improper validation of user input.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://simplesamlphp.org/security/201704-02
x_refsource_CONFIRM
[debian-lts-announce] 20171212 [SECURITY] [DLA 1205-1] simplesamlphp security update
mailing-list
x_refsource_MLIST
DSA-4127
vendor-advisory
x_refsource_DEBIAN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now