{"uuid": "788f36f8-de85-4779-b4e3-6815a156b903", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "name": "Critical authentication bypass vulnerabilities (CVE-2025-25291 + CVE-2025-25292) were discovered in ruby-saml up to version 1.17.0", "description": "Critical authentication bypass vulnerabilities (CVE-2025-25291 + CVE-2025-25292) were discovered in ruby-saml up to version 1.17.0.\nMore information: https://github.blog/security/sign-in-as-anyone-bypassing-saml-sso-authentication-with-parser-differentials/", "creation_timestamp": "2025-03-13T05:57:30.908420+00:00", "timestamp": "2025-03-13T05:57:30.908420+00:00", "related_vulnerabilities": ["CVE-2024-45409", "CVE-2025-25292", "CVE-2024-9487", "CVE-2025-25291"], "meta": [{"ref": ["https://github.blog/security/sign-in-as-anyone-bypassing-saml-sso-authentication-with-parser-differentials/"]}], "author": {"login": "cedric", "name": "C\u00e9dric Bonhomme", "uuid": "af0120d0-3dac-4a6a-974b-a9f33d2a9846"}}