CVE-2025-46572

Name of the Vulnerable Software and Affected Versions passport-wsfed-saml2 versions 3.0.5 through 4.6.3

Description A vulnerability in passport-wsfed-saml2 allows an attacker to impersonate any user in the Auth0 tenant during SAML authentication by crafting a SAMLResponse. This can be done by using a valid SAML object that was signed by the configured IdP. Users are affected specifically when the service provider is using passport-wsfed-saml2 and a valid SAML document signed by the Identity Provider can be obtained.

Recommendations For versions 3.0.5 through 4.6.3, update to version 4.6.4 to resolve the issue. As a temporary workaround, consider restricting access to SAML authentication until the update is applied. Avoid using the SAMLResponse object in the affected authentication flow until the issue is resolved.