CVE-2021-27736

Name of the Vulnerable Software and Affected Versions: FusionAuth fusionauth-samlv2 versions prior to 0.5.4

Description: The issue allows XXE attacks via a forged AuthnRequest or LogoutRequest because the parseFromBytes function uses javax.xml.parsers.DocumentBuilderFactory unsafely. This can be exploited by sending malicious requests to the affected system.

Recommendations: For FusionAuth fusionauth-samlv2 versions prior to 0.5.4, update to version 0.5.4 or later to resolve the issue. As a temporary workaround, consider restricting access to the parseFromBytes function until a patch is applied. Avoid using the javax.xml.parsers.DocumentBuilderFactory unsafely in the affected API endpoints until the issue is resolved.