Michael Ellis

Name of the Vulnerable Software and Affected Versions: Hitachi ID Bravura Security Fabric versions 11.0.0 through 11.1.3 Hitachi ID Bravura Security Fabric versions 12.0.0 through 12.0.2 Hitachi ID Bravura Security Fabric version 12.1.0 Description: An issue was discovered in Hitachi ID Bravura Security Fabric when using federated identity management, authenticating via SAML through a third-party identity provider. An attacker can inject additional data into a signed SAML response being transmitted to the service provider. The application successfully validates the signed values but uses the unsigned malicious values. An attacker with lower-privilege access to the application can inject the `username` of a high-privilege user to impersonate that user. Recommendations: For versions 11.0.0 through 11.1.3, consider disabling federated identity management via SAML until a patch is available. For versions 12.0.0 through 12.0.2, restrict access to the SAML authentication mechanism to minimize the risk of exploitation. For version 12.1.0, avoid using the SAML response for authentication until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.