2384049 – (CVE-2025-54419) CVE-2025-54419 @node-saml/node-saml: Node-SAML Signature Verification Vulnerability

Bug 2384049 (CVE-2025-54419) - CVE-2025-54419 @node-saml/node-saml: Node-SAML Signature Verification Vulnerability

Summary: CVE-2025-54419 @node-saml/node-saml: Node-SAML Signature Verification Vulnera...

Keywords:
Status:	NEW
Alias:	CVE-2025-54419
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	high
Severity:	high
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2025-07-28 20:03 UTC by OSIDB Bzimport
Modified:	2025-07-29 14:37 UTC (History)
CC List:	6 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-07-28 20:03:10 UTC

A SAML library not dependent on any frameworks that runs in Node. In versions 5.0.1 and below, Node-SAML loads the assertion from the (unsigned) original response document. This is different than the parts that are verified when checking signature. This allows an attacker to modify authentication details within a valid SAML assertion. For example, in one attack it is possible to remove any character from the SAML assertion username. To conduct the attack an attacker would need a validly signed document from the identity provider (IdP). This is fixed in version 5.1.0.

Note You need to log in before you can comment on or make changes to this bug.