Node-SAML Contains SAML Signature Verification Vulnerability_CVE-2025-54419

10 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N

Description

A SAML library not dependent on any frameworks that runs in Node. In version 5.0.1, Node-SAML loads the assertion from the (unsigned) original response document. This is different than the parts that are verified when checking signature. This allows an attacker to modify authentication details within a valid SAML assertion. For example, in one attack it is possible to remove any character from the SAML assertion username. To conduct the attack an attacker would need a validly signed document from the identity provider (IdP). This is fixed in version 5.1.0.

Basic Information

ID CVE-2025-54419

Source GitHub_M

Published Jul 28, 2025 at 19:47

Modified Jul 28, 2025 at 20:39

Affected Product

Vendor node-saml

Product node-saml

Version = 5.0.1

Affected Versions node-saml node-saml = 5.0.1

CWE Classification

CWE-287 CWE-347

References

{
    "lastseen": "",
    "description": "A SAML library not dependent on any frameworks that runs in Node. In version 5.0.1, Node-SAML loads the assertion from the (unsigned) original response document. This is different than the parts that are verified when checking signature. This allows an attacker to modify authentication details within a valid SAML assertion. For example, in one attack it is possible to remove any character from the SAML assertion username. To conduct the attack an attacker would need a validly signed document from the identity provider (IdP). This is fixed in version 5.1.0.",
    "published": "2025-07-28T19:47:46.584Z",
    "modified": "2025-07-28T20:39:07.897Z",
    "type": "cve",
    "title": "Node-SAML Contains SAML Signature Verification Vulnerability",
    "source": "GitHub_M",
    "references": "https://github.com/node-saml/node-saml/security/advisories/GHSA-4mxg-3p6v-xgq3\nhttps://github.com/node-saml/node-saml/commit/31ead9411ebc3e2385086fa9149b6c17732bca10\nhttps://github.com/node-saml/node-saml/releases/tag/v5.1.0",
    "id": "CVE-2025-54419",
    "bulletinFamily": "",
    "cwe": [
        "CWE-287",
        "CWE-347"
    ],
    "cvelist": null,
    "sourceData": "node-saml node-saml = 5.0.1",
    "sourceHref": "",
    "cvss": {
        "score": 10,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "node-saml",
    "version": "= 5.0.1",
    "vendor": "node-saml",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}