CVE-2025-46573

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2025-46573

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-46573.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2025-46573

Aliases

GHSA-8gqj-226h-gm8r

Published

2025-05-06T21:16:20Z

Modified

2025-05-19T10:20:04.223677Z

Summary

[none]

Details

passport-wsfed-saml2 provides passport strategy for both WS-fed and SAML2 protocol. A vulnerability present starting in version 3.0.5 up to and including version 4.6.3 allows an attacker to impersonate any user during SAML authentication by tampering with a valid SAML response. This can be done by adding attributes to the response. Users are affected specifically when the service provider is using passport-wsfed-saml2 and a valid SAML Response signed by the Identity Provider can be obtained. Version 4.6.4 contains a fix for the vulnerability.

References

Affected packages

Git / github.com/auth0/passport-wsfed-saml2

Affected ranges

Type: GIT
Repo: https://github.com/auth0/passport-wsfed-saml2
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

e5cf3cc2a53748207f7a81bfba9195c8efa94181

Affected versions

v3.*

v3.0.10

v3.0.11

v3.0.12

v3.0.5

v3.0.6

v3.0.7

v3.0.8

v3.0.9

v4.*

v4.0.0

v4.2.0

v4.3.0

v4.4.0

v4.5.0

v4.5.1