CVE-2025-31335 - CERT CVE

  1. CVE-2025-31335

ID CVE-2025-31335
Sažetak The OpenSAML C++ library before 3.3.1 allows forging of signed SAML messages via parameter manipulation (when using SAML bindings that rely on non-XML signatures).
Reference
CVSS
Base: 4.0
Impact: 1.4
Exploitability:2.2
Pristup
VektorSloženostAutentikacija
NETWORK HIGH NONE
Impact
PovjerljivostCjelovitostDostupnost
NONE LOW NONE
CVSS vektor CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N
Zadnje važnije ažuriranje 28-03-2025 - 18:11
Objavljeno 28-03-2025 - 06:15