SPECIAL TOPICS
  1. You are here:Home
  2. Articles
  3. ruby-saml-pwned-by-xml-signature-wrapping-attacks-ssoready

Ruby-SAML pwned by XML signature wrapping attacks | SSOReady

  • 20/09/2024
  • 8

CVE-2024-45409 was published on September 10, 2024. It’s yet another XML signature wrapping attack, this time affecting the main Ruby implementation of SAML. The vuln allows an attacker log in as any arbitrary user of the affected system.This attack keeps coming up again and again, and it keeps affecting huge swaths of the internet — this time, GitLab and much of the Ruby ecosystem — at a time.Here’s what this issue is, why it keeps happening, and what we can do about it.
Ruby-SAML pwned by XML signature wrapping attacks | SSOReady #ruby #rubydeveloper #rubyonrails https://rubyonrails.ba/single/ruby-saml-pwned-by-xml-signature-wrapping-attacks-ssoready

RubyOnRails.BA

If you think that this shoudn't be here on the site, please contact us and we will remove it.

Read more
previous article

UUIDv7 in 28 languages

share this post
  • linkedin rubyonrails.ba
  • twitter rubyonrails.ba
  • facebook rubyonrails.ba
next article

Mastering data structures in Ruby — Singly linked lists

quiz.rubyonrails.ba
blog.rubyonrails.ba
Nezir Zahirovic

Contractor Ruby On Rails (8+ years) / MCPD .Net / C# / Asp.Net / CSS / SQL / (11 years)

related articles

Popular Post