- Home
- CVEs with nessus.description==The version of Shibboleth Service Provider installed on the remote
host is version 2.0 prior to 2.6. As a result it is affected
by a user attribute forgery issue which could allow an attacker
to impersonate a valid user and gain access to sensitive information.
Note: Though versions higher than 2.6 are not vulnerable, 2.6.1.4
contains a patch for the affected library (XMLTooling-C) and is
recommended by the vendor.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top