Description

The Ruby SAML library is for implementing the client side of a SAML authorization. Ruby-SAML in <= 12.2 and 1.13.0 <= 1.16.0 does not properly verify the signature of the SAML Response. An unauthenticated attacker with access to any signed saml document (by the IdP) can thus forge a SAML Response/Assertion with arbitrary contents. This would allow the attacker to log in as arbitrary user within the vulnerable system. This vulnerability is fixed in 1.17.0 and 1.12.3.

INFO

Published Date :

2024-09-10T18:50:12.965Z

Last Modified :

2024-11-11T17:02:31.329Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2024-45409 vulnerability.

Vendors Products
Gitlab
  • Gitlab
Omniauth
  • Omniauth-saml
  • Omniauth Saml
Onelogin
  • Ruby-saml
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-45409.

URL Resource
https://github.com/SAML-Toolkits/ruby-saml/commit/1ec5392bc506fe43a02dbb66b68741051c5ffeae cve-icon cve-icon
https://github.com/SAML-Toolkits/ruby-saml/commit/4865d030cae9705ee5cdb12415c654c634093ae7 cve-icon cve-icon
https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-jw9c-mfg7-9rx2 cve-icon cve-icon
https://github.com/omniauth/omniauth-saml/security/advisories/GHSA-cvp8-5r8g-fhvq cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2024/11/msg00006.html cve-icon
https://news.ycombinator.com/item?id=41586031 cve-icon
https://security.netapp.com/advisory/ntap-20240926-0008/ cve-icon
https://ssoready.com/blog/engineering/ruby-saml-pwned-by-xml-signature-wrapping-attacks/ cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact