VIR Vulnerability Intelligence Relay

Package impact

python PyPI / pysaml2

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Published Description Impact
CVE-2021-21239 critical 9.5 5y ago PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default C… archsusedebianpython
CVE-2021-21238 critical 9.5 5y ago PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. All users of pysaml2 that need to valid… archsusedebianpython
CVE-2016-10127 critical 9.0 9.0 9y ago PySAML2 allows remote attackers to conduct XML external entity (XXE) attacks via a crafted SAML XML request or response. susedebianpython
CVE-2016-10149 high 7.5 7.5 9y ago XML External Entity (XXE) vulnerability in PySAML2 4.4.0 and earlier allows remote attackers to read arbitrary files via a crafted SAML XML request or response. susedebianpython