Lucene search
GoogleOSV:GO-2021-0058HistoryApr 14, 2021 - 8:04 p.m.
Signature validation bypass due to XML processing error in github.com/crewjam/saml
2021-04-1420:04:52
Google
osv.dev
10
Due to the behavior of encoding/xml, a crafted XML document may cause XML Digital Signature validation to be entirely bypassed, causing an unsigned document to appear signed.
| CPE | Name | Operator | Version |
|---|---|---|---|
| github.com/crewjam/saml | lt | 0.4.3 |
Related
fedora
fedora
[SECURITY] Fedora 33 Update: grafana-7.3.6-1.fc33
2021-01-05 01:26:51
[SECURITY] Fedora 32 Update: grafana-7.3.6-1.fc32
2021-01-05 01:19:14
redhatcve
redhatcve
osv
osv
BIT-grafana-2020-27846
2024-03-06 11:00:29
CVE-2020-27846
2020-12-21 16:15:13
XML Processing error in github.com/crewjam/saml
2021-06-23 17:29:42
openvas
openvas
Fedora: Security Advisory for grafana (FEDORA-2020-64e54abd9f)
2021-01-11 00:00:00
Fedora: Security Advisory for grafana (FEDORA-2020-968067abfa)
2021-01-11 00:00:00
nvd
nvd
CVE-2020-27846
2020-12-21 16:15:13
cvelist
cvelist
CVE-2020-27846
2020-12-21 15:16:14
veracode
veracode
Insecure XML Parsing
2020-12-22 04:41:46
nessus
nessus
Fedora 32 : grafana (2020-968067abfa)
2021-01-05 00:00:00
Fedora 33 : grafana (2020-64e54abd9f)
2021-01-05 00:00:00
RHEL 8 : grafana (RHSA-2021:1859)
2021-05-19 00:00:00
prion
prion
Design/Logic Flaw
2020-12-21 16:15:00
github
github
XML Processing error in github.com/crewjam/saml
2021-06-23 17:29:42
cve
cve
CVE-2020-27846
2020-12-21 16:15:13
rosalinux
rosalinux
Advisory ROSA-SA-2023-2299
2023-11-21 12:53:33
redhat
redhat
oraclelinux
oraclelinux
grafana security, bug fix, and enhancement update
2021-05-25 00:00:00
almalinux
almalinux
Moderate: grafana security, bug fix, and enhancement update
2021-05-18 06:16:06
rocky
rocky
grafana security, bug fix, and enhancement update
2021-05-18 06:16:06