DirectorySecurity Advisories
Sign In
Security Advisories

CGA-3qvq-cgm9-2fjm

Published

Last updated

https://images.chainguard.dev/security/CGA-3qvq-cgm9-2fjm
Package

gitlab-rails-ee-fips-17.3

Latest Update
Fixed
Fixed Version

17.3.3-r0

Aliases
  • CVE-2024-45409
  • GHSA-jw9c-mfg7-9rx2

Severity

10.0

Critical

CVSS V3

Summary

SAML authentication bypass via Incorrect XPath selector

Description

Ruby-SAML in <= 12.2 and 1.13.0 <= 1.16.0 does not properly verify the signature of the SAML Response. An unauthenticated attacker with access to any signed saml document (by the IdP) can thus forge a SAML Response/Assertion with arbitrary contents. This would allow the attacker to log in as arbitrary user within the vulnerable system.

This vulnerability was reported by ahacker1 of SecureSAML (ahacker1@securesaml.com)

References

Updates

Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2024 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard Images

Why Chainguard

Container Image SecurityVulnerability RemediationCompliance and Risk MitigationSoftware Supply Chain SecurityAI/ML Security

Customers

Customer StoriesChainguard Love

Company

About UsOpen SourceCareersNewsroomLegal

Resources

Unchained BlogResearchEventsTrust CenterDocumentation