CVE-2018-7340

CVE Database · CVE-2018-7340

CVE-2018-7340

· HIGHModified

CVSS v3.1

7.5

EPSS

0.96%

Published

Apr 17, 2019

Modified

Nov 21, 2024

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Duo Network Gateway 1.2.9 and earlier may incorrectly utilize the results of XML DOM traversal and canonicalization APIs in such a way that an attacker may be able to manipulate the SAML data without invalidating the cryptographic signature, allowing the attack to potentially bypass authentication to SAML service providers.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Weaknesses (CWE)

CWE-287CWE-347

Affected Products (1)

cisco · duo_network_gatewayvulnerable

References (4)

https://duo.com/blog/duo-finds-saml-vulnerabilities-affecting-multiple-implementations

ExploitVendor Advisory

https://www.kb.cert.org/vuls/id/475445

Third Party AdvisoryUS Government Resource

https://duo.com/blog/duo-finds-saml-vulnerabilities-affecting-multiple-implementations

ExploitVendor Advisory

https://www.kb.cert.org/vuls/id/475445

Third Party AdvisoryUS Government Resource

KEV Catalog EPSS Scores Vendors All CVEs