AI Score
Confidence
Low
EPSS
Percentile
78.1%
It was discovered that Lasso did not properly verify that all assertions in a SAML response were properly signed. An attacker could possibly use this to impersonate users or otherwise bypass access controls.
ubuntu.com/security/CVE-2021-28091
ubuntu.com/security/notices/USN-4974-1