2024-09-10 20:03:19 +00:00
{
"id" : "CVE-2024-45409" ,
"sourceIdentifier" : "security-advisories@github.com" ,
"published" : "2024-09-10T19:15:22.030" ,
2024-09-20 16:03:27 +00:00
"lastModified" : "2024-09-20T14:13:10.700" ,
"vulnStatus" : "Analyzed" ,
2024-09-10 20:03:19 +00:00
"cveTags" : [ ] ,
"descriptions" : [
{
"lang" : "en" ,
"value" : "The Ruby SAML library is for implementing the client side of a SAML authorization. Ruby-SAML in <= 12.2 and 1.13.0 <= 1.16.0 does not properly verify the signature of the SAML Response. An unauthenticated attacker with access to any signed saml document (by the IdP) can thus forge a SAML Response/Assertion with arbitrary contents. This would allow the attacker to log in as arbitrary user within the vulnerable system. This vulnerability is fixed in 1.17.0 and 1.12.3."
2024-09-11 18:03:18 +00:00
} ,
{
"lang" : "es" ,
"value" : "La librer\u00eda Ruby SAML sirve para implementar el lado del cliente de una autorizaci\u00f3n SAML. Ruby-SAML en <= 12.2 y 1.13.0 <= 1.16.0 no verifica correctamente la firma de la respuesta SAML. Un atacante no autenticado con acceso a cualquier documento SAML firmado (por el IdP) puede falsificar una respuesta/afirmaci\u00f3n SAML con contenido arbitrario. Esto le permitir\u00eda al atacante iniciar sesi\u00f3n como un usuario arbitrario dentro del sistema vulnerable. Esta vulnerabilidad se solucion\u00f3 en 1.17.0 y 1.12.3."
2024-09-10 20:03:19 +00:00
}
] ,
"metrics" : {
"cvssMetricV31" : [
2024-09-20 16:03:27 +00:00
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"cvssData" : {
"version" : "3.1" ,
"vectorString" : "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" ,
"attackVector" : "NETWORK" ,
"attackComplexity" : "LOW" ,
"privilegesRequired" : "NONE" ,
"userInteraction" : "NONE" ,
"scope" : "UNCHANGED" ,
"confidentialityImpact" : "HIGH" ,
"integrityImpact" : "HIGH" ,
"availabilityImpact" : "HIGH" ,
"baseScore" : 9.8 ,
"baseSeverity" : "CRITICAL"
} ,
"exploitabilityScore" : 3.9 ,
"impactScore" : 5.9
} ,
2024-09-10 20:03:19 +00:00
{
"source" : "security-advisories@github.com" ,
"type" : "Secondary" ,
"cvssData" : {
"version" : "3.1" ,
"vectorString" : "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N" ,
"attackVector" : "NETWORK" ,
"attackComplexity" : "LOW" ,
"privilegesRequired" : "NONE" ,
"userInteraction" : "NONE" ,
"scope" : "CHANGED" ,
"confidentialityImpact" : "HIGH" ,
"integrityImpact" : "HIGH" ,
"availabilityImpact" : "NONE" ,
"baseScore" : 10.0 ,
"baseSeverity" : "CRITICAL"
} ,
"exploitabilityScore" : 3.9 ,
"impactScore" : 5.8
}
]
} ,
"weaknesses" : [
{
"source" : "security-advisories@github.com" ,
"type" : "Primary" ,
"description" : [
{
"lang" : "en" ,
"value" : "CWE-347"
}
]
}
] ,
2024-09-20 16:03:27 +00:00
"configurations" : [
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:onelogin:ruby-saml:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "1.12.3" ,
"matchCriteriaId" : "DF41BEEE-FC5B-4728-B9BE-0B58C04F547E"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:onelogin:ruby-saml:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "1.13.0" ,
"versionEndExcluding" : "1.17.0" ,
"matchCriteriaId" : "ADBA67BE-BC31-48C0-A36F-9431814178C0"
}
]
}
]
} ,
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:omniauth:omniauth_saml:*:*:*:*:*:ruby:*:*" ,
"versionEndIncluding" : "1.10.3" ,
"matchCriteriaId" : "6D978907-97A8-4EF4-BF81-FE8702C24745"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:omniauth:omniauth_saml:2.0.0:*:*:*:*:ruby:*:*" ,
"matchCriteriaId" : "527AEDE3-F8EB-4C38-AF51-3B679AC4E336"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:omniauth:omniauth_saml:2.1.0:*:*:*:*:ruby:*:*" ,
"matchCriteriaId" : "3F307538-4D4D-4DD1-A9A0-F4D06E20163E"
}
]
}
]
} ,
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:gitlab:gitlab:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "16.11.10" ,
"matchCriteriaId" : "7000556E-4EBB-4B99-84B1-A2EEA709311C"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:gitlab:gitlab:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "17.0.0" ,
"versionEndExcluding" : "17.0.8" ,
"matchCriteriaId" : "3B47FDB0-B642-4E50-B0B6-1D71545FE917"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:gitlab:gitlab:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "17.1.0" ,
"versionEndExcluding" : "17.1.8" ,
"matchCriteriaId" : "86B327A7-22C7-488F-ABA6-3AC90EF07D04"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:gitlab:gitlab:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "17.2.0" ,
"versionEndExcluding" : "17.2.7" ,
"matchCriteriaId" : "E831CA83-DDA9-4F47-BCF8-2CBB7E74C9DC"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:gitlab:gitlab:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "17.3.0" ,
"versionEndExcluding" : "17.3.3" ,
"matchCriteriaId" : "60003658-012F-4DB8-9D8F-8E48C14CA0C4"
}
]
}
]
}
] ,
2024-09-10 20:03:19 +00:00
"references" : [
{
"url" : "https://github.com/SAML-Toolkits/ruby-saml/commit/1ec5392bc506fe43a02dbb66b68741051c5ffeae" ,
2024-09-20 16:03:27 +00:00
"source" : "security-advisories@github.com" ,
"tags" : [
"Patch"
]
2024-09-10 20:03:19 +00:00
} ,
{
"url" : "https://github.com/SAML-Toolkits/ruby-saml/commit/4865d030cae9705ee5cdb12415c654c634093ae7" ,
2024-09-20 16:03:27 +00:00
"source" : "security-advisories@github.com" ,
"tags" : [
"Patch"
]
2024-09-10 20:03:19 +00:00
} ,
{
"url" : "https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-jw9c-mfg7-9rx2" ,
2024-09-20 16:03:27 +00:00
"source" : "security-advisories@github.com" ,
"tags" : [
"Vendor Advisory"
]
2024-09-11 22:03:18 +00:00
} ,
{
"url" : "https://github.com/omniauth/omniauth-saml/security/advisories/GHSA-cvp8-5r8g-fhvq" ,
2024-09-20 16:03:27 +00:00
"source" : "security-advisories@github.com" ,
"tags" : [
"Vendor Advisory"
]
2024-09-10 20:03:19 +00:00
}
]
}
