vulnerability

SUSE: CVE-2025-31335: SUSE Linux Security Advisory

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:N/I:P/A:N)	Jun 5, 2025	Dec 5, 2025	Dec 5, 2025

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:P/A:N)

Published

Jun 5, 2025

Added

Dec 5, 2025

Modified

Dec 5, 2025

Description

The OpenSAML C++ library before 3.3.1 allows forging of signed SAML messages via parameter manipulation (when using SAML bindings that rely on non-XML signatures).

Solutions

suse-upgrade-libsaml-develsuse-upgrade-libsaml11suse-upgrade-libsaml13suse-upgrade-libsaml8suse-upgrade-opensaml-binsuse-upgrade-opensaml-schemas

References

CVE-2025-31335
https://attackerkb.com/topics/CVE-2025-31335
CWE-347

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today