PT-2017-14626 · Auth0 · Passport-Wsfed-Saml2

Alan Bishop

Published

2017-12-23

Updated

2023-06-21

CVE-2017-16897

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Auth0 passport-wsfed-saml2 versions prior to 3.0.5

Description A vulnerability has been discovered in the Auth0 passport-wsfed-saml2 library, allowing an attacker to impersonate another user and potentially elevate their privileges if the SAML identity provider does not sign the full SAML response. This issue arises when the SAML identity provider either signs the SAML response and the assertion within it, or does not sign the SAML response but signs the assertion.

Recommendations To fix this vulnerability, upgrade the Auth0 passport-wsfed-saml2 library to version 3.0.5 or above. This fix patches the library without impacting users, their current state, or existing sessions.

Fix

Authentication Bypass by Spoofing

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-290

Related Identifiers

CVE-2017-16897

GHSA-77FW-RF4V-VFP9

GHSA-7FPW-CFC4-3P2C

Affected Products

Passport-Wsfed-Saml2

PT-2017-14626 · Auth0 · Passport-Wsfed-Saml2

CVE-2017-16897

Weakness Enumeration

Related Identifiers

Affected Products

References · 9