CVE-2021-39171

Uncontrolled Resource Consumption in npm/passport-saml

Identifier

CVE-2021-39171

Package Slug

npm/passport-saml

Vulnerability

Uncontrolled Resource Consumption

Description

A malicious SAML payload can require transforms that consume significant system resources to process, thereby resulting in reduced or denied service.

Affected Versions

All versions before 3.1.0

Solution

Upgrade to version 3.1.0 or above.

Last Modified

2021-09-08

source