You are here

Home › SAML: Impersonation and Authentication Bypass Vulnerabilities

SAML: Impersonation and Authentication Bypass Vulnerabilities

Submitted on 1. March 2018 - 11:07 by Anonymous (not verified).
Last update on 18. August 2020 - 16:43.
IDs: 
CVE-2017-11427, CVE-2017-11428, CVE-2017-11429, CVE-2017-11430, CVE-2018-0489, CVE-2018-7340
Keywords: 
SAML, SSO, Impersonation, Authentication Bypass
Description: 

SAML vulnerabilities affecting multiple implementations have been discovered [1].

  • CVE-2017-11427, CVE-2017-11428, CVE-2017-11429, CVE-2017-11430, CVE-2018-0489, CVE-2018-7340
    These vulnerabilities may allow impersonation or authentication bypass when using an affected SAML implementation. The attack exploits the way certain implementations perform XML canonicalization/parsing in order to manipulate the parsed NameID in SAML assertions. The Airlock IAM SAML implementation is not affected, since such attempts to change the NameID result in an invalid NameID and thus the whole assertion is rejected.
Resolution: 

No action required for Airlock Suite software.

Component: 
Airlock
Airlock Vulnerability Status: 
Does not affect Airlock
Back-end Vulnerability Status: 
No action required
Reference: 
[1] https://duo.com/blog/duo-finds-saml-vulnerabilities-affecting-multiple-implementations
© Ergon Informatik AG