XML Signature Wrapping Affecting ruby-saml package, versions < 1.3.0

Snyk CVSS

Attack Complexity Low

Integrity High

Threat Intelligence

EPSS 0.09% (36^th percentile)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications

Snyk ID SNYK-RUBY-RUBYSAML-20269
published 23 Jun 2016
disclosed 23 Jun 2016
credit Unknown

Report a new vulnerability Found a mistake?

Introduced: 23 Jun 2016

CVE-2016-5697 Open this link in a new tab CWE-347 Open this link in a new tab

Overview

ruby-saml is a SAML toolkit for Ruby on Rails.

Affected versions of this gem are vulnerable to an XML signature wrapping attack. This occurs in the specific scenario where there was a signature that referenced at the same time 2 elements (but past the scheme validator process since 1 of the element was inside the encrypted assertion).

References

http://rubysec.com/advisories/CVE-2016-5697
https://github.com/onelogin/ruby-saml/commit/a571f52171e6bfd87db59822d1d9e8c38fb3b995