Vulnerability in Node-SAML SAML Library Allows Modification of Assertions
CVE-2025-54419

Currently unrated

Key Information:

Vendor: Node-SAML
Status: Node-SAML
Vendor: CVE Published:; 28 July 2025

What is CVE-2025-54419?

A vulnerability in the Node-SAML SAML library allows unauthorized modification of authentication details in valid SAML assertions. Specifically, in version 5.0.1, the library loads assertions from the original unsigned response document, which does not undergo full verification against signatures. This oversight enables attackers to alter critical elements, including usernames, of a valid SAML assertion, provided they possess a legitimately signed document from the identity provider (IdP). This issue has been addressed in version 5.1.0.

References

https://github.com/node-saml/node-saml/commit/31ead9411eb...

https://github.com/node-saml/node-saml/releases/tag/v5.1.0

https://github.com/node-saml/node-saml/security/advisorie...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 28, 2025