Vulnerabilities > Sustainsys

DATE CVE VULNERABILITY TITLE RISK
2023-09-19 CVE-2023-41890 Unspecified vulnerability in Sustainsys Saml2
Sustainsys.Saml2 library adds SAML2P support to ASP.NET web sites, allowing the web site to act as a SAML2 Service Provider.
network
low complexity
sustainsys
7.5
2020-04-21 CVE-2020-5268 Improper Authentication vulnerability in Sustainsys Saml2
In Saml2 Authentication Services for ASP.NET versions before 1.0.2, and between 2.0.0 and 2.6.0, there is a vulnerability in how tokens are validated in some cases.
network
low complexity
sustainsys CWE-287
7.3
2020-03-25 CVE-2020-5261 Authentication Bypass by Capture-replay vulnerability in Sustainsys Saml2
Saml2 Authentication services for ASP.NET (NuGet package Sustainsys.Saml2) greater than 2.0.0, and less than version 2.5.0 has a faulty implementation of Token Replay Detection.
network
high complexity
sustainsys CWE-294
6.8