Auth0 Passport-wsfed-saml2 — known CVE vulnerabilities
Every CVE whose affected-product data names Auth0 Passport-wsfed-saml2, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2017-16897 — CVSS 8.1 (high): A vulnerability has been discovered in the Auth0 passport-wsfed-saml2 library affecting versions < 3.0.5. This vulnerability allows an…
CVE-2022-23505 — CVSS 5.3 (medium): Passport-wsfed-saml2 is a ws-federation protocol and SAML2 tokens authentication provider for Passport. In versions prior to 4.6.3, a…