Misinterpretation of Input
CVE-2020-27846
Summary
A signature verification vulnerability exists in crewjam/saml. This flaw allows an attacker to bypass SAML Authentication. The highest threat from this vulnerability is confidentiality, integrity, as well as system availability. The vulnerability was fixed in version 0.4.3.
- LOW
- NETWORK
- HIGH
- UNCHANGED
- NONE
- NONE
- HIGH
- HIGH
CWE-115 - Misinterpretation of Input
The software misinterprets an input, whether from an attacker or another product, in a security-relevant fashion.
Advisory Timeline
- Published