Beta

Report

SAML SP 2.0 Single Sign On (SSO) - SAML Service Provider < 2.14.0 is vulnerable to Drupal SAML SP 2.0 Single Sign On (SSO) - SAML Service Provider module < 2.14.0 - Unauthenticated Broken Access Control vulnerability

Unauthenticated
Published
2020-11-17

Drupal SAML SP 2.0 Single Sign On (SSO) - SAML Service Provider module < 2.14.0 - Unauthenticated Broken Access Control vulnerability

CVSS

Score:5.4

Severity:Medium

Version:< 2.14.0

There is a patch available in v2.14.0 and we strongly recommend you update to this version as soon as possible.