VYPR
Unrated severityNVD Advisory· Published Mar 31, 2015· Updated Jun 17, 2026

CVE-2015-2684

CVE-2015-2684

Description

Shibboleth Service Provider (SP) before 2.5.4 allows remote authenticated users to cause a denial of service (crash) via a crafted SAML message.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • cpe:2.3:a:shibboleth:service_provider:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:shibboleth:service_provider:*:*:*:*:*:*:*:*range: <=2.5.3
    • (no CPE)range: <2.5.4
  • cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.