Описание
An authenticated administrator can upload a SAML configuration file with the wrong format, with the application not checking the correct file format. Every subsequent application request will return an error.
The whole application in rendered unusable until a console intervention.
An authenticated administrator can upload a SAML configuration file with the wrong format, with the application not checking the correct file format. Every subsequent application request will return an error.
The whole application in rendered unusable until a console intervention.
EPSS
6.9 Medium
CVSS4
4.9 Medium
CVSS3
CVE ID
Дефекты
Связанные уязвимости
An authenticated administrator can upload a SAML configuration file with the wrong format, with the application not checking the correct file format. Every subsequent application request will return an error. The whole application in rendered unusable until a console intervention.
Уязвимость технологии SAML (Security Assertion Markup Language) средства обнаружения и отслеживания сетевой активности Nozomi Guardian и средства централизованного управления безопасностью Nozomi Central Management Console (CMC), позволяющая нарушителю вызвать отказ в обслуживании
EPSS
6.9 Medium
CVSS4
4.9 Medium
CVSS3