mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-28 01:02:25 +00:00
24 lines
837 B
JSON
24 lines
837 B
JSON
{
|
|
"id": "CVE-2023-34923",
|
|
"sourceIdentifier": "cve@mitre.org",
|
|
"published": "2023-06-22T19:15:08.987",
|
|
"lastModified": "2023-06-22T19:15:08.987",
|
|
"vulnStatus": "Received",
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "XML Signature Wrapping (XSW) in SAML-based Single Sign-on feature in TOPdesk v12.10.12 allows bad actors with credentials to authenticate with the Identity Provider (IP) to impersonate any TOPdesk user via SAML Response manipulation."
|
|
}
|
|
],
|
|
"metrics": {},
|
|
"references": [
|
|
{
|
|
"url": "https://char49.com/articles/topdesk-vulnerable-to-xml-signature-wrapping-attacks",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "https://my.topdesk.com/tas/public/ssp/content/detail/knowledgeitem?unid=56a16ba1c2824e9a82655892ba75d3c0",
|
|
"source": "cve@mitre.org"
|
|
}
|
|
]
|
|
} |