CVE-2023-36661

Posted on 2023년 6월 26일2023년 6월 26일 by admin

CVE-2023-36661

Shibboleth XMLTooling before 3.2.4, as used in OpenSAML and Shibboleth Service Provider, allows SSRF via a crafted KeyInfo element. (This is fixed in, for example, Shibboleth Service Provider 3.4.1.3 on Windows.)

Source: CVE-2023-36661

답글 남기기 응답 취소