Sustainsys Saml2
3 CVEs affecting Sustainsys Saml2. Latest disclosed: 2023-09-19. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2020-5261 | High | 8.2 | 2020-03-25 | Saml2 Authentication services for ASP.NET (NuGet package Sustainsys.Saml2) greater than 2.0.0, and less than version 2.5.0 has a faulty implementation of Token… |
CVE-2023-41890 | High | 7.5 | 2023-09-19 | Sustainsys.Saml2 library adds SAML2P support to ASP.NET web sites, allowing the web site to act as a SAML2 Service Provider. Prior to versions 1.0.3 and 2.9.2… |
CVE-2020-5268 | Medium | 6.5 | 2020-04-21 | In Saml2 Authentication Services for ASP.NET versions before 1.0.2, and between 2.0.0 and 2.6.0, there is a vulnerability in how tokens are validated in some c… |