Posts tagged 'cloud'

[ADVISORY] Apache CloudStack SAML Single Sign-On X...

Apache CloudStack version 4.5.0 and later has a SAML 2.0 authentication Service Provider plugin which is found to be vulnerable to XML external entity (XXE) injection. This plugin is not enabled by default and the attacker would require that this plugin be enabled to exploit the vulnerability. When the SAML 2.0 plugin is enabled in affected versions of... [Read more...]

Search blogs.apache.org

Today's active blogs

Popular blog tags

Related sites

Navigation