pkg:maven/org.opensaml/opensaml
Type
maven
Namespace
org.opensaml
Name
opensaml
Known advisories, vulnerabilities and fixes for org.opensaml/opensaml package.
Moderate
4
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 2.6.4 |
CVE-2015-1796
|
MAVEN:GHSA-78FQ-W796-Q537 | Improper Certificate Validation in Shibboleth Identity Provider and OpenSAML | moderate |
2022-05-17T03:38:17
(2 years ago) |
|
Fixed | = 2.6.5 |
CVE-2015-1796
|
MAVEN:GHSA-78FQ-W796-Q537 | Improper Certificate Validation in Shibboleth Identity Provider and OpenSAML | moderate |
2022-05-17T03:38:17
(2 years ago) |
|
Affected | >= 2.5.0, < 2.5.1 >= 2.4.0, < 2.4.3 |
CVE-2011-1411
|
MAVEN:GHSA-QWWJ-QJ3F-9HV7 | Improper Authentication in OpenSAML | moderate |
2022-05-17T05:02:41
(2 years ago) |
|
Fixed | = 2.5.1 = 2.4.3 |
CVE-2011-1411
|
MAVEN:GHSA-QWWJ-QJ3F-9HV7 | Improper Authentication in OpenSAML | moderate |
2022-05-17T05:02:41
(2 years ago) |
|
Affected | < 2.6.2 |
CVE-2014-3603
|
MAVEN:GHSA-RM7V-GQFG-P2WC | Improper Validation of Certificate with Host Mismatch in Shibboleth Identity Provider and OpenSAML Java | moderate |
2022-05-14T01:11:29
(2 years ago) |
|
Fixed | = 2.6.2 |
CVE-2014-3603
|
MAVEN:GHSA-RM7V-GQFG-P2WC | Improper Validation of Certificate with Host Mismatch in Shibboleth Identity Provider and OpenSAML Java | moderate |
2022-05-14T01:11:29
(2 years ago) |
|
Affected | < 2.6.1 |
CVE-2013-6440
|
MAVEN:GHSA-V723-58JV-2QC4 | Exposure of Sensitive Information to an Unauthorized Actor in OpenSAML | moderate |
2022-05-13T01:04:00
(2 years ago) |
|
Fixed | = 2.6.1 |
CVE-2013-6440
|
MAVEN:GHSA-V723-58JV-2QC4 | Exposure of Sensitive Information to an Unauthorized Actor in OpenSAML | moderate |
2022-05-13T01:04:00
(2 years ago) |