{"uuid": "50756d89-a7e2-4217-bd37-8c0c38f0d732", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-41107", "type": "seen", "source": "https://t.me/cvedetector/1213", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-41107 - CloudStack SAML Authentication Spoofing Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-41107 \nPublished : July 19, 2024, 11:15 a.m. | 26\u00a0minutes ago \nDescription : The CloudStack SAML authentication (disabled by default) does not enforce signature check. In CloudStack environments where SAML authentication is enabled, an attacker that initiates CloudStack SAML single sign-on authentication can bypass SAML authentication by submitting a spoofed SAML response with no signature and known or guessed username and other user details of a SAML-enabled CloudStack user-account.\u00a0In such environments, this can result in a complete compromise of the resources owned and/or accessible by a SAML enabled user-account.  \n  \nAffected users are recommended to disable the SAML authentication plugin by setting the\u00a0\"saml2.enabled\" global setting to \"false\", or upgrade to version 4.18.2.2, 4.19.1.0 or later, which addresses this issue. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"19 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-19T13:42:10.000000Z"}