CVE-2015-5217 in Identity Provider Serverالمعلومات

الملخص

بحسب MITRE

providers/saml2/admin.py in the Identity Provider (IdP) server in Ipsilon 0.1.0 before 1.0.1 does not properly check permissions to update the SAML2 Service Provider (SP) owner, which allows remote authenticated users to cause a denial of service via a duplicate SP name.

Be aware that VulDB is the high quality source for vulnerability data.

حجز

01/07/2015

إفشاء

17/11/2015

الاعتدال

تمت الموافقة

إدخال

VDB-79229

EPSS

0.01300

KEV

لا

النشاطات

منخفض جدًا

المصادر

Want to know what is going to be exploited?

We predict KEV entries!