CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Microsoft: >> Identitymodel Security Vulnerabilities

CVE-2019-1006

An authentication bypass vulnerability exists in Windows Communication Foundation (WCF) and Windows Identity Foundation (WIF), allowing signing of SAML tokens with arbitrary symmetric keys, aka 'WCF/WIF SAML Token Authentication Bypass Vulnerability'.

CVSS Score

7.5

EPSS Score

0.03

Published

2019-07-15

Page 1

Vulnerabilities

Vulnerable Software

Microsoft: >> Identitymodel Security Vulnerabilities

Products

Pricing

Contact Us