VYPR

psPAS

by psPAS

CVEs (1)

  • CVE-2025-59270LowSep 16, 2025
    risk 0.00cvss 3.1epss 0.00

    psPAS PowerShell module does not explicitly enforce TLS 1.2 within the 'Get-PASSAMLResponse' function during the SAML authentication process. An unauthenticated attacker in a 'Man-in-the-Middle' position could manipulate the TLS handshake and downgrade TLS to a deprecated…