Node Saml Project Node Saml — known CVE vulnerabilities
Every CVE whose affected-product data names Node Saml Project Node Saml, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2022-39300 — CVSS 7.7 (high): node SAML is a SAML 2.0 library based on the SAML implementation of passport-saml. A remote attacker may be able to bypass SAML…
CVE-2023-40178 — CVSS 5.3 (medium): Node-SAML is a SAML library not dependent on any frameworks that runs in Node. The lack of checking of current timestamp allows a…