CyberSecurity news
FlagThis
@www.csoonline.com
//
A critical authentication bypass vulnerability, identified as CVE-2025-47949, has been discovered in the widely-used samlify library. This flaw allows attackers to bypass Single Sign-On (SSO) protections and gain unauthorized access to systems that rely on SAML for authentication. The vulnerability poses a significant risk, as attackers can impersonate legitimate users, including those with administrative privileges. The severity of this flaw is reflected in its CVSS v4.0 score of 9.9, indicating a critical risk demanding immediate attention.
The vulnerability is a Signature Wrapping attack, targeting the XML structure of SAML responses. By injecting unsigned malicious assertions into legitimately signed SAML responses, attackers can forge SAML responses, effectively impersonating any user, including administrators, within the system. This allows attackers to gain maximum system privileges. The vulnerability affects samlify versions prior to 2.10.0 and is classified under CWE-347: Improper Verification of Cryptographic Signature.
The impact of CVE-2025-47949 is significant, primarily affecting the integrity of systems relying on the vulnerable samlify library. While confidentiality and availability are not directly compromised, the ability to impersonate users and gain unauthorized access poses a substantial threat. The attack vector is network-based with low complexity, requiring minimal effort and no privileges. Organizations using samlify for SAML SSO integration, particularly those in SaaS platforms or implementing SSO for internal tools, are strongly urged to update to version 2.10.0 or later to mitigate this critical security risk.
ImgSrc: www.csoonline.c
References :
The vulnerability is a Signature Wrapping attack, targeting the XML structure of SAML responses. By injecting unsigned malicious assertions into legitimately signed SAML responses, attackers can forge SAML responses, effectively impersonating any user, including administrators, within the system. This allows attackers to gain maximum system privileges. The vulnerability affects samlify versions prior to 2.10.0 and is classified under CWE-347: Improper Verification of Cryptographic Signature.
The impact of CVE-2025-47949 is significant, primarily affecting the integrity of systems relying on the vulnerable samlify library. While confidentiality and availability are not directly compromised, the ability to impersonate users and gain unauthorized access poses a substantial threat. The attack vector is network-based with low complexity, requiring minimal effort and no privileges. Organizations using samlify for SAML SSO integration, particularly those in SaaS platforms or implementing SSO for internal tools, are strongly urged to update to version 2.10.0 or later to mitigate this critical security risk.
ImgSrc: www.csoonline.c
Share:
References :
- BleepingComputer: A critical Samlify authentication bypass vulnerability has been discovered that allows attackers to impersonate admin users by injecting unsigned malicious assertions into legitimately signed SAML responses.
- The DefendOps Diaries: Understanding and Mitigating CVE-2025-47949: A Critical SAML Vulnerability
- BleepingComputer: Critical Samlify SSO flaw lets attackers log in as admin
- www.csoonline.com: Samlify bug lets attackers bypass single sign-on
- www.bleepingcomputer.com: Critical Samlify SSO flaw lets attackers log in as admin
Classification:
- HashTags: #Samlify #SSO #Vulnerability
- Company: Socradar
- Target: Systems relying on SAML-based SSO
- Product: samlify
- Feature: Authentication Bypass
- Malware: CVE-2025-47949
- Type: Vulnerability
- Severity: Critical