rpm package
opensuse/xmltooling&distro=openSUSE Leap 15.4
pkg:rpm/opensuse/xmltooling&distro=openSUSE%20Leap%2015.4
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-36661 | — | < 1.6.4-150000.3.10.1 | 1.6.4-150000.3.10.1 | Jun 25, 2023 | Shibboleth XMLTooling before 3.2.4, as used in OpenSAML and Shibboleth Service Provider, allows SSRF via a crafted KeyInfo element. (This is fixed in, for example, Shibboleth Service Provider 3.4.1.3 on Windows.) |
- CVE-2023-36661Jun 25, 2023affected < 1.6.4-150000.3.10.1fixed 1.6.4-150000.3.10.1
Shibboleth XMLTooling before 3.2.4, as used in OpenSAML and Shibboleth Service Provider, allows SSRF via a crafted KeyInfo element. (This is fixed in, for example, Shibboleth Service Provider 3.4.1.3 on Windows.)