Information Disclosure Risk in SimpleSAMLphp by Launching Attacks on Misconfigured Identity Providers
CVE-2017-12873

9.8CRITICAL

Key Information:

Vendor

SimplesamlPHP

Status
SimplesamlPHP
Vendor
CVE Published:
1 September 2017

What is CVE-2017-12873?

The SimpleSAMLphp versions 1.7.0 to 1.14.10 have a vulnerability that can be exploited due to improper handling of persistent NameIDs, particularly in scenarios where the Identity Provider (IdP) is misconfigured. This flaw may enable attackers to access sensitive information and gain unauthorized privileges, posing severe risks to systems relying on SimpleSAMLphp for authentication. Administrators are advised to ensure proper configuration of Identity Providers to mitigate these risks.

References

https://github.com/simplesamlphp/simplesamlphp/commit/90d...
x_refsource_CONFIRM
https://lists.debian.org/debian-lts-announce/2017/12/msg0...
mailing-listx_refsource_MLIST
https://simplesamlphp.org/security/201612-04
x_refsource_CONFIRM

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.