CVE-2022-41912

The crewjam/saml go library prior to version 0.4.9 is vulnerable to an authentication bypass when processing SAML responses containing multiple Assertion elements. This issue has been corrected in version 0.4.9. There are no workarounds other than upgrading to a fixed version.

Published: Nov 28, 2022
Updated: May 9, 2024
CVE: CVE-2022-41912
GHSA: GHSA-j2jp-wvqg-wc2g
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-287

OWASP TOP 10:

A2 - Broken Authentication

Affected Software
References

Software	From	Fixed in
saml_project / saml	-	0.4.9
github.com/crewjam/saml	-	0.4.9

http://packetstormsecurity.com/files/170356/crewjam-saml-Signature-Bypass.html
https://github.com/crewjam/saml/commit/aee3fb1edeeaf1088fcb458727e0fd863d277f8b
https://github.com/crewjam/saml/releases/tag/v0.4.9
https://github.com/crewjam/saml/security/advisories/GHSA-j2jp-wvqg-wc2g
https://github.com/prometheus/exporter-toolkit/security/advisories/GHSA-7rg2-cxvp-9p7p
https://pkg.go.dev/vuln/GO-2022-1129

Vulnerability Database

289,599

CVE-2022-41912