CVE-2021-43999
maven/org.apache.guacamole/guacamole-common
Improper Authentication
Apache Guacamole do not properly validate responses received from a SAML identity provider. If SAML support is enabled, this may allow a malicious user to assume the identity of another Guacamole user.
All versions starting from 1.2.0 up to 1.3.0
Upgrade to version 1.4.0 or above.
2022-01-16
source |