Simplesamlphp · Simplesamlphp · CVE-2017-12869
**Name of the Vulnerable Software and Affected Versions**
SimpleSAMLphp versions 1.14.13 and earlier
**Description**
The issue allows remote attackers to bypass authentication context restrictions. This is achieved by using an authentication source defined in config/authsources.php, via vectors related to improper validation of user input.
**Recommendations**
For versions 1.14.13 and earlier, update to a version later than 1.14.13 to resolve the issue.