Access Bypass Vulnerability in SimpleSAMLphp's sqlauth Module
CVE-2018-6521

9.8CRITICAL

Key Information:

Vendor

SimplesamlPHP

Status
SimplesamlPHP
Vendor
CVE Published:
2 February 2018

What is CVE-2018-6521?

The sqlauth module in SimpleSAMLphp versions prior to 1.15.2 is vulnerable due to its reliance on the MySQL utf8 charset. This design flaw can potentially permit remote attackers to bypass intended access restrictions by exploiting the truncation of queries that occurs when four-byte characters are encountered. It is crucial for organizations using affected versions to update their systems to mitigate this vulnerability.

References

https://simplesamlphp.org/security/201801-03
x_refsource_CONFIRM
https://lists.debian.org/debian-lts-announce/2018/02/msg0...
mailing-listx_refsource_MLIST
https://www.debian.org/security/2018/dsa-4127
vendor-advisoryx_refsource_DEBIAN

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.