exploitDog

CVE-2008-3891

Опубликовано: 03 сент. 2008

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

The SAML Single Sign-On (SSO) Service for Google Apps allows remote service providers to impersonate users at arbitrary service providers via vectors related to authentication responses that lack a request identifier and recipient field.

Ссылки

http://www.kb.cert.org/vuls/id/612636
US Government Resource
http://www.kb.cert.org/vuls/id/MIMG-7FQGWU
http://www.kb.cert.org/vuls/id/612636
US Government Resource
http://www.kb.cert.org/vuls/id/MIMG-7FQGWU

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:google:google_apps:*:*:*:*:*:*:*:*

EPSS

Процентиль: 40%

0.00183

Низкий

7.5 High

CVSS2

Дефекты

CWE-287

Связанные уязвимости

GHSA-6qx9-873m-3jxj

github

почти 4 года назад

The SAML Single Sign-On (SSO) Service for Google Apps allows remote service providers to impersonate users at arbitrary service providers via vectors related to authentication responses that lack a request identifier and recipient field.

EPSS

Процентиль: 40%

0.00183

Низкий

7.5 High

CVSS2

Дефекты

CWE-287