CVE-2017-1000452

Name of the Vulnerable Software and Affected Versions samlify versions prior to 2.4.0-rc5 Express-saml2 (affected versions not specified) samlify version 2.2.0 and earlier

Description An issue exists that could allow attackers to impersonate arbitrary users by modifying SAML content for a SAML service provider without invalidating the cryptographic signature. This may allow attackers to bypass primary authentication for the affected SAML service provider. The issue is due to the failure to prevent XML Signature Wrapping, allowing tokens to be reused with different usernames.

Recommendations For samlify versions prior to 2.4.0-rc5, upgrade to version 2.4.0-rc5 or later. For Express-saml2, at the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting access to SAML service providers to minimize the risk of exploitation.