EPSS
Percentile
77.7%
Shibboleth OpenSAML library 2.4.x before 2.4.3 and 2.5.x before 2.5.1, and IdP before 2.3.2, allows remote attackers to forge messages and bypass authentication via an “XML Signature wrapping attack.”
shibboleth.internet2.edu/secadv/secadv_20110725.txt
www.debian.org/security/2011/dsa-2284
www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html
nvd.nist.gov/vuln/detail/CVE-2011-1411