Authentication bypass in Advanced Secure Gateway and ProxySG - CVE-2018-5241
Published: May 30, 2018 / Updated: May 30, 2018
Vulnerability identifier: #VU13067
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2018-5241
CWE-ID: CWE-20
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: Broadcom
Affected software:
Advanced Secure Gateway
ProxySG
Advanced Secure Gateway
ProxySG
Detailed vulnerability description
The vulnerability allows a remote attacker can bypass authentication on the target system.
The weakness exists due to improper processing of SAML responses that contain XML nodes with comments. A remote attacker can modify a valid SAML response so that the target system will still validate the cryptographic signature and bypass SAML authentication security controls.
The weakness exists due to improper processing of SAML responses that contain XML nodes with comments. A remote attacker can modify a valid SAML response so that the target system will still validate the cryptographic signature and bypass SAML authentication security controls.
How to mitigate CVE-2018-5241
Cybersecurity Help is currently unaware of any solutions addressing the vulnerability.