CVE-2025-66568
BaseFortify
Publication date: 2025-12-09
Last updated on: 2025-12-10
Assigner: GitHub, Inc.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| ruby-saml | ruby-saml | 1.12.4 |
| ruby-saml | ruby-saml | 1.18.0 |
| onelogin | ruby-saml | to 1.18.0 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-347 | The product does not verify, or incorrectly verifies, the cryptographic signature for data. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in the ruby-saml library versions up to 1.12.4, where an attacker can bypass authentication by exploiting the libxml2 canonicalization process used by Nokogiri. When libxml2 processes invalid XML input, it may return an empty string instead of a canonicalized node. ruby-saml then incorrectly computes the DigestValue over this empty string, allowing a Signature Wrapping attack that can bypass authentication.
How can this vulnerability impact me? :
This vulnerability can allow an attacker to bypass authentication mechanisms in applications using vulnerable versions of ruby-saml, potentially granting unauthorized access to protected resources or systems.
What immediate steps should I take to mitigate this vulnerability?
Upgrade the ruby-saml library to version 1.18.0 or later, as this version contains the fix for the authentication bypass vulnerability caused by the libxml2 canonicalization process.