Vulnerabilities > Sustainsys > Saml2 > 0.6.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-19 | CVE-2023-41890 | Authentication Bypass by Capture-replay vulnerability in Sustainsys Saml2 Sustainsys.Saml2 library adds SAML2P support to ASP.NET web sites, allowing the web site to act as a SAML2 Service Provider. | 7.5 |
| 2020-04-21 | CVE-2020-5268 | Improper Authentication vulnerability in Sustainsys Saml2 In Saml2 Authentication Services for ASP.NET versions before 1.0.2, and between 2.0.0 and 2.6.0, there is a vulnerability in how tokens are validated in some cases. | 4.9 |