SAML Authentication Login Outage Vulnerability
CVE-2024-36383

5.3MEDIUM

Key Information:

Vendor: Logpoint
Status: Saml Authentication
Vendor: CVE Published:; 27 May 2024

What is CVE-2024-36383?

A vulnerability exists in Logpoint's SAML Authentication component before version 6.0.3, wherein an attacker is able to exploit improper handling of the state field in a SAML SSO-URL response. By crafting a malicious filename and placing it within this field, the attacker can cause the corresponding file to be deleted. This not only leads to the loss of potentially critical files but can also result in disruptions to SAML Authentication login processes, impacting users' access to services.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://servicedesk.logpoint.com/hc/en-us/articles/191281...

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 27, 2024

JSON

Logpoint

What is CVE-2024-36383?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.