CVE-2025-66567

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions ruby-saml versions up to and including 1.12.4

Description The ruby-saml library, used for SAML authorization on the client side, has an authentication bypass issue. This is due to an incomplete fix related to a previous issue. Differences in how ReXML and Nokogiri parse XML can lead to a Signature Wrapping attack. The library generates different document structures from the same input when using these parsers.

Recommendations Update to version 1.18.0 or later.

Exploit

Fix

Improper Verification of Cryptographic Signature

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-436CWE-347

Related Identifiers

CVE-2025-66567

GHSA-754F-8GM6-C4R2

GHSA-9V8J-X534-2FX3

Affected Products

Ruby-Saml

CVE-2025-66567

Weakness Enumeration

Related Identifiers

Affected Products

References · 35