Lucene search

Veracode Vulnerability DatabaseVERACODE:43858

HistoryOct 18, 2023 - 5:59 a.m.

Cross-site Scripting (XSS)

2023-10-1805:59:40

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

github

saml

cross-site scripting

7.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L

0.0005 Low

EPSS

Percentile

17.1%

JSON

github.com/crewjam/saml is vulnerable to Cross-site Scripting (XSS). The vulnerability arises from inadequate validation of the ACS location URI in metadata.go, enabling an attacker to register malicious service providers at the IdP. This allows an attacker to inject and execute malicious JavaScript in the ACS endpoint definition, leading to Cross-Site Scripting (XSS) in the IdP context during the redirection at the end of a SAML Single Sign-On (SSO) flow.

CPENameOperatorVersion
github.com/crewjam/samllev0.4.13
github.com/crewjam/samllev0.4.13

CPE	Name	Operator	Version
	github.com/crewjam/saml	le	v0.4.13
	github.com/crewjam/saml	le	v0.4.13

References

github.com/crewjam/saml/commit/b07b16cf83c4171d16da4d85608cb827f183cd79

github.com/crewjam/saml/security/advisories/GHSA-267v-3v32-g6q5