CVE-2017-16852

CVE-2017-16852

shibsp/metadata/DynamicMetadataProvider.cpp in the Dynamic MetadataProvider plugin in Shibboleth Service Provider before 2.6.1 fails to properly configure itself with the MetadataFilter plugins and does not perform critical security checks such as signature verification, enforcement of validity periods, and other checks specific to deployments, aka SSPCPP-763.

Source: CVE-2017-16852

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다