VYPR
Moderate severityNVD Advisory· Published Nov 17, 2015· Updated Jun 17, 2026

CVE-2015-5301

CVE-2015-5301

Description

providers/saml2/admin.py in the Identity Provider (IdP) server in Ipsilon 0.1.0 before 1.0.2 and 1.1.x before 1.1.1 does not properly check permissions, which allows remote authenticated users to cause a denial of service by deleting a SAML2 Service Provider (SP).

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
ipsilonPyPI
>= 0.1.0, < 1.0.21.0.2
ipsilonPyPI
>= 1.1.0, < 1.2.01.2.0

Affected products

9
  • Ipsilon/Ipsilon8 versions
    cpe:2.3:a:ipsilon_project:ipsilon:0.1.0:*:*:*:*:*:*:*+ 7 more
    • cpe:2.3:a:ipsilon_project:ipsilon:0.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ipsilon_project:ipsilon:0.3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ipsilon_project:ipsilon:0.4.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ipsilon_project:ipsilon:0.5.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ipsilon_project:ipsilon:0.6.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ipsilon_project:ipsilon:1.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ipsilon_project:ipsilon:1.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ipsilon_project:ipsilon:1.1.0:*:*:*:*:*:*:*
  • ghsa-coords
    Range: >= 0.1.0, < 1.0.2

Patches

Vulnerability mechanics

References

11

News mentions

0

No linked articles in our index yet.