VYPR

Morpheus

by Morpheus

CVEs (1)

  • CVE-2022-31261HigMay 24, 2022
    risk 0.49cvss 7.5epss 0.01

    An XXE issue was discovered in Morpheus through 5.2.16 and 5.4.x through 5.4.4. A successful attack requires a SAML identity provider to be configured. In order to exploit the vulnerability, the attacker must know the unique SAML callback ID of the configured identity source. A…