Lucene search
Veracode Vulnerability DatabaseVERACODE:4653HistoryJul 25, 2017 - 3:26 a.m.
Denial Of Service (DoS)
2017-07-2503:26:13
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
3
0.007 Low
EPSS
Percentile
81.0%
simplesamlphp/saml2 is vulnerable to denial of service (DoS) attacks and spoofed SAML responses. It mishandles the conversion of return values to boolean which allows attackers to perform these attacks.
| CPE | Name | Operator | Version |
|---|---|---|---|
| simplesamlphp/saml2 | le | 1.9 | |
| simplesamlphp/saml2 | le | 2.3.2 | |
| simplesamlphp/saml2 | le | 1.10.2 |
References
Related
cve
cve
CVE-2016-9814
2017-02-17 02:59:14
osv
osv
SimpleSAMLphp SAML2 spoof SAML responses
2022-05-14 03:40:37
CVE-2016-9814
2017-02-17 02:59:00
simplesamlphp - security update
2018-03-02 00:00:00
github
github
SimpleSAMLphp SAML2 spoof SAML responses
2022-05-14 03:40:37
ubuntucve
ubuntucve
CVE-2016-9814
2017-02-17 00:00:00
prion
prion
Design/Logic Flaw
2017-02-17 02:59:00
nvd
nvd
CVE-2016-9814
2017-02-17 02:59:14
cvelist
cvelist
CVE-2016-9814
2017-02-16 18:00:00
friendsofphp
friendsofphp
Incorrect signature verification
2016-11-29 13:12:44
debiancve
debiancve
CVE-2016-9814
2017-02-17 02:59:14
debian
debian
[SECURITY] [DLA 1297-1] simplesamlphp security update
2018-03-02 11:11:13
nessus
nessus
Debian DLA-1298-1 : simplesamlphp security update
2018-03-06 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-1298-1)
2018-03-26 00:00:00