SAML Signature Forgery Vulnerability in Relyra Library for Elixir and Phoenix
CVE-2026-49454

9.1CRITICAL

Key Information:

Vendor

Sztheory

Status
Relyra
Vendor
CVE Published:
18 June 2026

What is CVE-2026-49454?

Relyra, a SAML 2.0 Service Provider library for Elixir and Phoenix, has a vulnerability that allows forged SAML signatures to be accepted without proper cryptographic verification. The issue arises from inadequate validation of the SignatureValue, as critical checks against the configured IdP certificate's public key were skipped. This flaw enables an attacker to present a fraudulent SignatureValue with a malicious NameID, resulting in the library erroneously acknowledging the authentication. Version 1.2.0 has been released to remediate this critical oversight.

Affected Version(s)

relyra >= 1.0.0, < 1.2.0

References

https://github.com/szTheory/relyra/security/advisories/GH...
x_refsource_CONFIRM
https://github.com/szTheory/relyra/commit/2e456897af3158c...
x_refsource_MISC
https://github.com/szTheory/relyra/commit/8910200
x_refsource_MISC

CVSS V3.1

Score:
9.1
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.