SAML SP 2.0 Single Sign On (SSO) - SAML Service Provider - Critical - Access bypass - SA-CONTRIB-2020-038

Project: SAML SP 2.0 Single Sign On (SSO) - SAML Service ProviderDate: 2020-November-18Security risk: Critical 16∕25 AC:Basic/A:None/CI:Some/II:Some/E:Theoretical/TD:AllVulnerability: Access bypassDescription: This module enables your users residing at a SAML 2.0 compliant Identity Provider to login to your Drupal website.
The module has two Authentication Bypass vulnerabilities.Solution: Install the latest version:

Reported By: 

Fixed By: 

Coordinated By: 

Path to article