Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

SAML CVE announcement

Announcements

2.6k

D

dan
last edited by dan
If you are running a version of FusionAuth prior to 1.16.0 AND using SAML, you should upgrade ASAP.

More details:
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12676
- https://compass-security.com/fileadmin/Research/Advisories/2020-06_CSNC-2020-002_FusionAuth_Signature_Exclusion_Attack.txt
--
FusionAuth - Auth for devs, built by devs.
https://fusionauth.io
1 Reply Last reply
Reply Quote 0

1 / 1