Posts tagged 'cloud'

[ADVISORY] Apache CloudStack SAML Single Sign-On X...

Apache CloudStack version 4.5.0 and later has a SAML 2.0 authentication Service Provider plugin which is found to be vulnerable to XML external entity (XXE) injection. This plugin is not enabled by default and the attacker would require that this plugin be enabled to exploit the vulnerability. When the SAML 2.0 plugin is enabled in affected versions of... [Read more...]


Today's active blogs

Popular blog tags

Related sites