Name of the Vulnerable Software and Affected Versions: SimpleSAMLphp versions prior to 1.14.17

Description: A signature validation bypass issue has been found in the SimpleSAML XML Validator class, which performs the verification of the XML digital signature of a SAML 1 message with a given key. This issue allows an attacker to generate a SAML 1 authentication response that contains two different assertions, enabling them to impersonate any user from any SAML 1 Identity Provider trusted by a SimpleSAMLphp Service Provider. The attacker can leverage this vulnerability with the only pre-requisite of a valid assertion previously sent to the affected Service Provider.

Recommendations: For SimpleSAMLphp versions prior to 1.14.17, upgrade to the latest version. When an upgrade is not possible immediately, apply the provided patch to the SimpleSAML/XML/Validator.php file, which changes the in array() function to perform strict comparisons when checking if an object is found inside a given array.