Filtered by vendor Shibboleth Subscriptions
Filtered by product Shibboleth-identity-provider Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2011-1411 1 Shibboleth 2 Opensaml, Shibboleth-identity-provider 2024-11-21 N/A
Shibboleth OpenSAML library 2.4.x before 2.4.3 and 2.5.x before 2.5.1, and IdP before 2.3.2, allows remote attackers to forge messages and bypass authentication via an "XML Signature wrapping attack."