Unrated severityNVD Advisory· Published Oct 9, 2012· Updated Jun 16, 2026
CVE-2012-5353
CVE-2012-5353
Description
Eduserv OpenAthens SP 2.0 for Java allows remote attackers to forge messages and bypass authentication via a SAML assertion that lacks a Signature element, aka a "Signature exclusion attack."
Affected products
2- cpe:2.3:a:eduserv:openathens_service_provider:2.0:-:*:*:*:java:*:*
- Range: = 2.0
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.