CVE-2025-25293

CVSS v4.0

8.7

High

Vector

AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Name of the Vulnerable Software and Affected Versions: ruby-saml versions prior to 1.12.4 and 1.18.0

Description: The issue is related to the ruby-saml library, which provides security assertion markup language (SAML) single sign-on (SSO) for Ruby. The library is susceptible to remote Denial of Service (DoS) with compressed SAML responses. This is because ruby-saml uses zlib to decompress SAML responses, and it is possible to bypass the message size check with a compressed assertion since the message size is checked before inflation and not after. This may lead to remote Denial of Service (DoS).

Recommendations: To resolve the issue, update to version 1.12.4 or 1.18.0, or later, of the ruby-saml library. As a temporary workaround, consider disabling the use of compressed SAML responses until a patch is available. Restrict access to the vulnerable ruby-saml library to minimize the risk of exploitation.

Exploit

Fix

DoS

Resource Exhaustion

Improper Verification of Cryptographic Signature

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400CWE-347CWE-770

Related Identifiers

BDU:2025-03642

BIT-GITLAB-2025-25293

CVE-2025-25293

DLA-4115-1

GHSA-92RQ-C8CF-PRRQ

GHSA-HW46-3HMR-X9XV

USN-7409-1

Affected Products

Debian

Linuxmint

Ubuntu

Ruby-Saml

CVE-2025-25293

Weakness Enumeration

Related Identifiers

Affected Products

References · 54