CVE-2021-43999
Improper Authentication in maven/org.apache.guacamole/guacamole-common
Identifiers
CVE-2021-43999
Package Slug
maven/org.apache.guacamole/guacamole-common
Vulnerability
Improper Authentication
Description
Apache Guacamole do not properly validate responses received from a SAML identity provider. If SAML support is enabled, this may allow a malicious user to assume the identity of another Guacamole user.
Affected Versions
All versions starting from 1.2.0 up to 1.3.0
Solution
Upgrade to version 1.4.0 or above.
Last Modified
2022-01-16
| source |