PT-2024-21111 · Samly · Samly
Idyll
·
Published
2024-02-10
·
Updated
2024-10-21
·
CVE-2024-25718
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Samly package versions prior to 1.4.0 for Elixir
Description
The issue arises from the
Samly.State.Store.get assertion/3 function, which can return an expired session. This interferes with access control because Samly.AuthHandler uses a cached session and does not replace it, even after expiry.Recommendations
For versions prior to 1.4.0, update to version 1.4.0 or later to resolve the issue.
As a temporary workaround, consider disabling the
Samly.State.Store.get assertion/3 function until a patch is available.
Restrict access to the Samly.AuthHandler to minimize the risk of exploitation.Fix
Resource Exhaustion
Insufficient Session Expiration
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Samly