Adobe Acrobat and Reader versions 2019.008.20081 and earlier, 2019.008.20080 and earlier, 2019.…

ruby-saml provides security assertion markup language (SAML) single sign-on (SSO) for Ruby. An …

A improper verification of cryptographic signature vulnerability in Fortinet FortiOS 7.6.0 thro…

If Apache Pulsar is configured to authenticate clients using tokens based on JSON Web Tokens (J…

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java S…

Why is Microsoft republishing a CVE from 2013? We are republishing CVE-2013-3900 in the Securit…

A vulnerability in the Cisco node-jose open source library before 0.11.0 could allow an unauthe…

A spoofing vulnerability exists when Windows incorrectly validates file signatures. An attacker…

An improper verification of cryptographic signature vulnerability in Fortinet FortiWeb 8.0.0, F…

An improper verification of cryptographic signature vulnerability was identified in GitHub Ente…

golang.org/x/crypto before v0.0.0-20200220183623-bac4c82f6975 for Go allows a panic during sign…

ruby-saml provides security assertion markup language (SAML) single sign-on (SSO) for Ruby. An …

Mozilla Network Security Services (NSS) before 3.16.2.1, 3.16.x before 3.16.5, and 3.17.x befor…

whatsapp-api-js is a TypeScript server agnostic Whatsapp's Official API framework. It's possibl…

The Ruby SAML library is for implementing the client side of a SAML authorization. Ruby-SAML in…

Improper verification of cryptographic signature in ASP.NET Core allows an unauthorized attacke…

xml-crypto is an XML digital signature and encryption library for Node.js. An attacker may be a…

Apache WSS4J before 1.6.17 and 2.x before 2.0.2, as used in Apache CXF 2.7.x before 2.7.13 and …

xml-crypto is an XML digital signature and encryption library for Node.js. An attacker may be a…

A firmware validation issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus P…

A vulnerability exists that could allow the execution of unauthorized code or operating system …

pac4j-jwt versions prior to 4.5.9, 5.7.9, and 6.3.3 contain an authentication bypass vulnerabil…

An Insufficient Verification of Data Authenticity vulnerability in B. Braun SpaceCom2 prior to …

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Secur…

An issue was discovered in password-store.sh in pass in Simple Password Store 1.7.x before 1.7.…

A certificate validation issue was addressed. This issue is fixed in macOS Ventura 13.6, iOS 16…

The installer for BitDefender GravityZone relies on an encoded string in a filename to determin…

When Security Assertion Markup Language (SAML) authentication is enabled and the 'Validate Iden…

The Portable Document Format (PDF) specification does not provide any information regarding the…

A Security Bypass vulnerability exists in Ubuntu Cobbler before 2,2,2 in the cobbler-ubuntu-imp…

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Secur…

Mozilla Network Security Services (NSS) before 3.19.1, as used in Mozilla Firefox before 39.0, …

In IGEL OS before 11, Secure Boot can be bypassed because the igel-flash-driver module improper…

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (comp…

Improper verification of cryptographic signature vulnerability in Intel Security VirusScan Ente…

RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2…

Passport-SAML is a SAML 2.0 authentication provider for Passport, the Node.js authentication li…

Rob Richards XmlSecLibs, all versions prior to v3.0.3, as used for example by SimpleSAMLphp, pe…

Acrobat Reader DC versions 2020.012.20048 (and earlier), 2020.001.30005 (and earlier) and 2017.…

FusionAuth fusionauth-samlv2 0.2.3 allows remote attackers to forge messages and bypass authent…