vulnerability
Ubuntu: (CVE-2025-31335): opensaml vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:L/Au:N/C:C/I:C/A:N) | Mar 28, 2025 | May 22, 2025 | May 27, 2025 |
Severity
9
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:N)
Published
Mar 28, 2025
Added
May 22, 2025
Modified
May 27, 2025
Description
The OpenSAML C++ library before 3.3.1 allows forging of signed SAML messages via parameter manipulation (when using SAML bindings that rely on non-XML signatures).
Solution(s)
ubuntu-pro-upgrade-opensamlubuntu-pro-upgrade-opensaml2
References
- CVE-2025-31335
- https://attackerkb.com/topics/CVE-2025-31335
- URL-https://git.shibboleth.net/view/?p=cpp-opensaml.git;a=commit;h=22a610b322e2178abd03e97cdbc8fb50b45efaee
- URL-https://lists.debian.org/debian-security-announce/2025/msg00041.html
- URL-https://shibboleth.atlassian.net/browse/CPPOST-126
- URL-https://shibboleth.net/community/advisories/secadv_20250313.txt
- URL-https://ubuntu.com/security/notices/USN-7364-1
- URL-https://www.cve.org/CVERecord?id=CVE-2025-31335
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.