Security Advisory

CVE-2020-12676

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-10-02 19:40:33

Last updated 2024-08-04 12:04:22

Assigner mitre

State PUBLISHED

Description

FusionAuth fusionauth-samlv2 0.2.3 allows remote attackers to forge messages and bypass authentication via a SAML assertion that lacks a Signature element, aka a "Signature exclusion attack".

← Browse all CVEs View on cve.org ↗