Security Advisory

CVE-2019-1006

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-07-15 18:56:20

Last updated 2024-08-04 18:06:31

Assigner microsoft

State PUBLISHED

Description

An authentication bypass vulnerability exists in Windows Communication Foundation (WCF) and Windows Identity Foundation (WIF), allowing signing of SAML tokens with arbitrary symmetric keys, aka WCF/WIF SAML Token Authentication Bypass Vulnerability.

← Browse all CVEs View on cve.org ↗