Be in love with vulnerability scanning
Mageni is a powerful and easy vulnerability scanner used by companies of all sizes. You will be in love with Mageni's powerful features, ease of use and price. Free for 7-days then $39 monthly for infinite IPs.Start now
No Contracts, Cancel at Anytime and 7-days Money-Back Guarantee.
The Service Provider (SP) in PicketLink before 2.7.0 does not ensure that it is a member of an Audience element when an AudienceRestriction is specified, which allows remote attackers to log in to other users' accounts via a crafted SAML assertion. NOTE: this identifier has been SPLIT per ADT2 due to different vulnerability types. See CVE-2015-6254 for lack of validation for the Destination attribute in a Response element in a SAML assertion..
- Base Score
- Exploit Score
- Access Vector
- Access Complexity
- Authentication Required
- Impact Score
- Confidentiality Impact
- Availability Impact
- Integrity Impact
Every 11 seconds there is a ransomware attack.
Mageni can help you manage this threat by understanding your vulnerabilities and prioritizing the remediation.Sign up for free