FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2023-02-06 01:31:55 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
69815a1d-c31d-11eb-9633-b42e99a1b9c3SOGo -- SAML user authentication impersonation

sogo.nu reports:

SOGo was not validating the signatures of any SAML assertions it received.

This means any actor with network access to the deployment could impersonate

users when SAML was the authentication method.


Discovery 2021-06-01
Entry 2021-06-02
sogo
lt 5.1.1

sogo-activesync
lt 5.1.1

sogo2
lt 2.4.1

sogo2-activesync
lt 2.4.1

CVE-2021-33054
https://www.sogo.nu/news/2021/saml-vulnerability.html
https://blogs.akamai.com/2021/06/sogo-and-packetfence-impacted-by-saml-implementation-vulnerabilities.html