CVE-2017-5530

Name of the Vulnerable Software and Affected Versions tibbr Community versions 5.2.1 and below tibbr Community version 6.0.0 tibbr Community version 6.0.1 tibbr Community version 7.0.0 tibbr Enterprise versions 5.2.1 and below tibbr Enterprise version 6.0.0 tibbr Enterprise version 6.0.1 tibbr Enterprise version 7.0.0

Description The issue is related to SAML protocol handling errors in the tibbr web server components of tibbr Community and tibbr Enterprise. This may allow authorized users to impersonate other users, potentially escalating their access privileges.

Recommendations For tibbr Community versions 5.2.1 and below, consider updating to a version above 5.2.1 to resolve the issue. For tibbr Community version 6.0.0, consider updating to a version above 6.0.0 to resolve the issue. For tibbr Community version 6.0.1, consider updating to a version above 6.0.1 to resolve the issue. For tibbr Community version 7.0.0, consider updating to a version above 7.0.0 to resolve the issue. For tibbr Enterprise versions 5.2.1 and below, consider updating to a version above 5.2.1 to resolve the issue. For tibbr Enterprise version 6.0.0, consider updating to a version above 6.0.0 to resolve the issue. For tibbr Enterprise version 6.0.1, consider updating to a version above 6.0.1 to resolve the issue. For tibbr Enterprise version 7.0.0, consider updating to a version above 7.0.0 to resolve the issue.