CVSS: 8.8EPSS: 0%CPEs: 5EXPL: 0CVE-2021-28091 – lasso: XML signature wrapping vulnerability when parsing SAML responses
https://notcve.org/view.php?id=CVE-2021-28091
Lasso all versions prior to 2.7.0 has improper verification of a cryptographic signature. Lasso todas las versiones anteriores a versión 2.7.0, presentan una verificación inapropiada de una firma criptográfica An XML Signature Wrapping (XSW) vulnerability was found in Lasso. This flaw allows an attacker to modify a valid SAML response to include an unsigned SAML assertion, which may be used to impersonate another valid user recognized by the service using Lasso. The highest threat from this vulnerability is to data confidentiality and integrity as well as service availability. • http://listes.entrouvert.com/arc/lasso https://git.entrouvert.org/lasso.git/commit/?id=076a37d7f0eb74001127481da2d355683693cde9 https://git.entrouvert.org/lasso.git/tree/NEWS?id=v2.7.0 https://lists.debian.org/debian-lts-announce/2021/06/msg00013.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SI4YAQF4VEV2KHQ6OXXZL7CJK7IZQ3EG https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YSVWOHBBWLI2RB5C6TXINFEJRT4YSD3D https://www.debian.org&# • CWE-345: Insufficient Verification of Data Authenticity CWE-347: Improper Verification of Cryptographic Signature •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2015-1783
https://notcve.org/view.php?id=CVE-2015-1783
The prefix variable in the get_or_define_ns function in Lasso before commit 6d854cef4211cdcdbc7446c978f23ab859847cdd allows remote attackers to cause a denial of service (uninitialized memory access and application crash) via unspecified vectors. La variable prefex en la función get_or_define_ns en Lasso anterior a 6d854cef4211cdcdbc7446c978f23ab859847cdd permite que atacantes remotos provoquen una denegación de servicio (acceso a memoria no inicializada y bloqueo de aplicación) mediante vectores sin especificar. • http://lists.fedoraproject.org/pipermail/package-announce/2015-April/154321.html http://lists.fedoraproject.org/pipermail/package-announce/2015-April/154355.html http://lists.fedoraproject.org/pipermail/package-announce/2015-April/155382.html https://bugzilla.redhat.com/show_bug.cgi?id=1199925 https://repos.entrouvert.org/lasso.git/commit/lasso/xml?id=6d854cef4211cdcdbc7446c978f23ab859847cdd • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 4.3EPSS: 0%CPEs: 3EXPL: 0CVE-2009-0050
https://notcve.org/view.php?id=CVE-2009-0050
Lasso 2.2.1 and earlier does not properly check the return value from the OpenSSL DSA_verify function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077. Lasso versión 2.2.1 y anteriores, no comprueba apropiadamente el valor devuelto de la función DSA_verify de OpenSSL, que permite a los atacantes remotos omitir la comprobación de la cadena de certificados mediante una firma de SSL/TLS malformada, una vulnerabilidad similar a CVE-2008-5077. • http://www.ocert.org/advisories/ocert-2008-016.html http://www.securityfocus.com/archive/1/499827/100/0/threaded https://exchange.xforce.ibmcloud.com/vulnerabilities/47837 • CWE-20: Improper Input Validation •