CVE

CVE-2017-12873 (simplesamlphp)

admin

CVE-2017-12873 (simplesamlphp)

SimpleSAMLphp 1.7.0 through 1.14.10 might allow attackers to obtain sensitive information, gain unauthorized access, or have unspecified other impacts by leveraging incorrect persistent NameID generation when an Identity Provider (IdP) is misconfigured.

Source: CVE-2017-12873 (simplesamlphp)

Exit mobile version