CVE-2026-32600: simplesamlphp/xml-security: Missing AES-GCM Authentication Tag Validation on Encrypted Nodes Allows for Unauthorized Decryption
(updated )
XML nodes encrypted with either aes-128-gcm, aes-192-gcm, or aes-256-gcm lack validation of the authentication tag length. An attacker can use this to brute-force an authentication tag, recover the GHASH key, and decrypt the encrypted nodes. It also allows to forge arbitrary ciphertexts without knowing the encryption key.
References
- github.com/advisories/GHSA-r353-4845-pr5p
- github.com/simplesamlphp/xml-security
- github.com/simplesamlphp/xml-security/commit/cad6d57cf0a5a0b7e0cc4e4a5b18752e56eb1520
- github.com/simplesamlphp/xml-security/commit/fdc12449e959c610943f9fd428e95e3832d74c25
- github.com/simplesamlphp/xml-security/security/advisories/GHSA-r353-4845-pr5p
- nvd.nist.gov/vuln/detail/CVE-2026-32600
Code Behaviors & Features
Detect and mitigate CVE-2026-32600 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →