Description

The CloudStack SAML authentication (disabled by default) does not enforce signature check. In CloudStack environments where SAML authentication is enabled, an attacker that initiates CloudStack SAML single sign-on authentication can bypass SAML authentication by submitting a spoofed SAML response with no signature and known or guessed username and other user details of a SAML-enabled CloudStack user-account. In such environments, this can result in a complete compromise of the resources owned and/or accessible by a SAML enabled user-account. Affected users are recommended to disable the SAML authentication plugin by setting the "saml2.enabled" global setting to "false", or upgrade to version 4.18.2.2, 4.19.1.0 or later, which addresses this issue.

INFO

Published Date :

2024-07-19T10:19:53.995Z

Last Modified :

2025-03-19T18:31:21.603Z

Source :

apache
AFFECTED PRODUCTS

The following products are affected by CVE-2024-41107 vulnerability.

Vendors Products
Apache
  • Cloudstack
Apache Software Foundation
  • Apache Cloudstack
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-41107.

URL Resource
http://www.openwall.com/lists/oss-security/2024/07/19/1 cve-icon cve-icon
http://www.openwall.com/lists/oss-security/2024/07/19/2 cve-icon cve-icon
https://cloudstack.apache.org/blog/security-release-advisory-cve-2024-41107 cve-icon cve-icon
https://github.com/apache/cloudstack/issues/4519 cve-icon cve-icon
https://lists.apache.org/thread/5q06g8zvmhcw6w3tjr6r5prqdw6zckg3 cve-icon cve-icon
https://www.shapeblue.com/shapeblue-security-advisory-apache-cloudstack-cve-2024-41107 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact