CVE-2016-10149 — XML External Entity (XXE) Injection in Project Pysaml2

CWE-611 — XML External Entity (XXE) Injection CWE-776 — XML Entity Expansion11 documents7 sources

Severity

7.5HIGHNVD

EPSS

1.3%

top 20.18%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Pysaml2 Project Pysaml2 Debian Python-pysaml2 Debian Linux

Timeline

PublishedMar 24

Latest updateMay 29

Description

XML External Entity (XXE) vulnerability in PySAML2 4.4.0 and earlier allows remote attackers to read arbitrary files via a crafted SAML XML request or response.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

▶debiandebian/python-pysaml2< python-pysaml2 3.0.0-5 (bookworm)

▶PyPIpysaml2_project/pysaml2< 4.5.0

▶NVDpysaml2_project/pysaml24.4.0

Also affects: Debian Linux 8.0

Patches

Patch: www.openwall.com ↗Patch: bugs.debian.org ↗Patch: github.com ↗

🔴Vulnerability Details

OSV

Pysaml2 does not sanitize XML responses↗2018-07-16

▶

GHSA

Pysaml2 does not sanitize XML responses↗2018-07-16

▶

OSV

CVE-2016-10149: XML External Entity (XXE) vulnerability in PySAML2 4↗2017-03-24

▶

📋Vendor Advisories

Ubuntu

PySAML2 vulnerability↗2017-08-24

▶

Red Hat

python-pysaml2: Entity expansion issue↗2016-10-31

▶

Debian

CVE-2016-10149: python-pysaml2 - XML External Entity (XXE) vulnerability in PySAML2 4.4.0 and earlier allows remo...↗2016

▶

💬Community

Bugzilla

CVE-2019-10149 exim: Remote command execution in deliver_message() function in /src/deliver.c↗2019-05-29

▶

Bugzilla

CVE-2016-10149 python-pysaml2: various flaws [fedora-all]↗2017-01-23

▶

Bugzilla

CVE-2016-10149 python-pysaml2: Entity expansion issue↗2017-01-23

▶

Bugzilla

CVE-2016-10127 python-pysaml2: Vulnerable to XML external entity attack↗2017-01-10

▶