Back

CVE-2024-45409

Sept. 10, 2024, 7:15 p.m.

Received
CVE has been recently published to the CVE List and has been received by the NVD.

Products

Ruby SAML library

  • <= 12.2
  • 1.13.0 - 1.16.0

Source

security-advisories@github.com

Tags

security-advisories@github.com
CWE-347
2024-09-10
CVE-2024-45409

CVE-2024-45409 details

Published : Sept. 10, 2024, 7:15 p.m.
Last Modified : Sept. 10, 2024, 7:15 p.m.

Description

The Ruby SAML library is for implementing the client side of a SAML authorization. Ruby-SAML in <= 12.2 and 1.13.0 <= 1.16.0 does not properly verify the signature of the SAML Response. An unauthenticated attacker with access to any signed saml document (by the IdP) can thus forge a SAML Response/Assertion with arbitrary contents. This would allow the attacker to log in as arbitrary user within the vulnerable system. This vulnerability is fixed in 1.17.0 and 1.12.3.

CVSS Score

1 2 3 4 5 6 7 8 9 10.0

Weakness

Weakness Name Description
CWE-347 Improper Verification of Cryptographic Signature The product does not verify, or incorrectly verifies, the cryptographic signature for data.

CVSS Data

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

Base Score

10.0

Exploitability Score

3.9

Impact Score

5.8

Base Severity

CRITICAL

Vector String : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N

References

URL Source
https://github.com/SAML-Toolkits/ruby-saml/commit/1ec5392bc506fe43a02dbb66b68741051c5ffeae security-advisories@github.com
https://github.com/SAML-Toolkits/ruby-saml/commit/4865d030cae9705ee5cdb12415c654c634093ae7 security-advisories@github.com
https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-jw9c-mfg7-9rx2 security-advisories@github.com
This website uses the NVD API, but is not approved or certified by it.