Tag: Signature Wrapping
Cybersecurity Threat Advisory: Critical authentication bypass in ruby-saml
Cybersecurity Threat Advisory: Critical authentication bypass in ruby-saml
CVE-2025-25292 and CVE-2025-25291 are related to an authentication bypass vulnerability found in ruby-saml due to parser differential handling. The flaws carry a high CVSS score of 8.8. The vulnerability exists in the way ReXML and Nokogiri parse XML differently. The...
