Vulnerabilities (CVE)

Filtered by vendor Microsoft Subscribe
Filtered by product Identitymodel
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-1006 1 Microsoft 13 .net Framework, Identitymodel, Sharepoint Enterprise Server and 10 more 2024-11-21 5.0 MEDIUM 7.5 HIGH
An authentication bypass vulnerability exists in Windows Communication Foundation (WCF) and Windows Identity Foundation (WIF), allowing signing of SAML tokens with arbitrary symmetric keys, aka 'WCF/WIF SAML Token Authentication Bypass Vulnerability'.