rpm package
suse/xmltooling&distro=SUSE Linux Enterprise Server 12 SP5
pkg:rpm/suse/xmltooling&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-36661 | — | < 1.5.6-3.13.1 | 1.5.6-3.13.1 | Jun 25, 2023 | Shibboleth XMLTooling before 3.2.4, as used in OpenSAML and Shibboleth Service Provider, allows SSRF via a crafted KeyInfo element. (This is fixed in, for example, Shibboleth Service Provider 3.4.1.3 on Windows.) |
- CVE-2023-36661Jun 25, 2023affected < 1.5.6-3.13.1fixed 1.5.6-3.13.1
Shibboleth XMLTooling before 3.2.4, as used in OpenSAML and Shibboleth Service Provider, allows SSRF via a crafted KeyInfo element. (This is fixed in, for example, Shibboleth Service Provider 3.4.1.3 on Windows.)