providers/saml2/admin.py in the Identity Provider (IdP) server in Ipsilon 0.1.0 before 1.0.2 and 1.1.x before 1.1.1 does not properly check permissions, which allows remote authenticated users to cause a denial of service by deleting a SAML2 Service Provider (SP).
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2015-11-17T15:00:00
Updated: 2016-12-05T22:57:01
Reserved: 2015-07-01T00:00:00
Link: CVE-2015-5301
JSON object: View
NVD Information
Status : Modified
Published: 2015-11-17T15:59:06.263
Modified: 2016-12-07T18:16:25.693
Link: CVE-2015-5301
JSON object: View
Redhat Information
No data.
CWE