Vulnerabilities (CVE)

Filtered by vendor Componentspace Subscribe
Filtered by product Saml
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-45597 1 Componentspace 1 Saml 2023-12-10 N/A 9.8 CRITICAL
ComponentSpace.Saml2 4.4.0 Missing SSL Certificate Validation. NOTE: the vendor does not consider this a vulnerability because the report is only about use of certificates at the application layer (not the transport layer) and "Certificates are exchanged in a controlled fashion between entities within a trust relationship. This is why self-signed certificates may be used and why validating certificates isn’t as important as doing so for the transport layer certificates."