{
  "id": "CVE-2023-34923",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2023-06-22T19:15:08.987",
  "lastModified": "2023-06-22T19:15:08.987",
  "vulnStatus": "Received",
  "descriptions": [
    {
      "lang": "en",
      "value": "XML Signature Wrapping (XSW) in SAML-based Single Sign-on feature in TOPdesk v12.10.12 allows bad actors with credentials to authenticate with the Identity Provider (IP) to impersonate any TOPdesk user via SAML Response manipulation."
    }
  ],
  "metrics": {},
  "references": [
    {
      "url": "https://char49.com/articles/topdesk-vulnerable-to-xml-signature-wrapping-attacks",
      "source": "cve@mitre.org"
    },
    {
      "url": "https://my.topdesk.com/tas/public/ssp/content/detail/knowledgeitem?unid=56a16ba1c2824e9a82655892ba75d3c0",
      "source": "cve@mitre.org"
    }
  ]
}