SAML Authentication Login Outage Vulnerability
CVE-2024-36383

5.3MEDIUM

Key Information:

Vendor: Logpoint
Status: Saml Authentication
Vendor: CVE Published:; 27 May 2024

What is CVE-2024-36383?

A vulnerability exists in Logpoint's SAML Authentication component before version 6.0.3, wherein an attacker is able to exploit improper handling of the state field in a SAML SSO-URL response. By crafting a malicious filename and placing it within this field, the attacker can cause the corresponding file to be deleted. This not only leads to the loss of potentially critical files but can also result in disruptions to SAML Authentication login processes, impacting users' access to services.

References

https://servicedesk.logpoint.com/hc/en-us/articles/191281...

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 27, 2024

JSON