Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
shibsp/metadata/DynamicMetadataProvider.cpp in the Dynamic MetadataProvider plugin in Shibboleth Service Provider before 2.6.1 fails to properly configure itself with the MetadataFilter plugins and does not perform critical security checks such as signature verification, enforcement of validity periods, and other checks specific to deployments, aka SSPCPP-763.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Shibboleth Service Provider Dynamic MetadataProvider插件安全漏洞
Vulnerability Description
Shibboleth是英国Shibboleth公司的一套开源的基于SAML协议的Web单点登录系统。Shibboleth Service Provider(SP)是其中的一个服务提供商组件。Dynamic MetadataProvider plugin是其中的一个动态数据提供插件。 Shibboleth SP 2.6.1之前的版本中的Dynamic MetadataProvider插件的shibsp/metadata/DynamicMetadataProvider.cpp文件存在安全漏洞,该漏洞源于程序没
CVSS Information
N/A
Vulnerability Type
N/A