CVE-2026-5343

EPSS 0.26%
Veröffentlicht 28.05.2026 22:48:47
Zuletzt bearbeitet 01.06.2026 17:29:21
Quelle mlhess@drupal.org
CVE-Watchlists
Login
Unerledigt
Login

SAML SSO - Service Provider - Critical - Authentication bypass - SA-CONTRIB-2026-031

Improper Check for Unusual or Exceptional Conditions vulnerability in Drupal SAML SSO - Service Provider allows Privilege Escalation.

This issue affects SAML SSO - Service Provider: from 0.0.0 before 3.1.4.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

NVD 77 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Miniorange ≫ Saml Sso - Service Provider SwPlatformdrupal Version >= 3.0.1 < 3.1.4

Miniorange ≫ Saml Sso - Service Provider Version7.x-1.0 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-1.1 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-1.2 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-1.3 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-1.4 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-1.5 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-1.6 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-1.7 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-1.8 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-1.9 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-1.91 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-1.92 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-1.93 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-1.94 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-1.95 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-1.96 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-1.97 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-1.98 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-1.99 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-1.991 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-1.992 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-1.993 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-1.994 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-1.995 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-2.0 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-2.1 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-2.2 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-2.3 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-2.4 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-2.5 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-2.51 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-2.52 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-2.53 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-2.54 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-2.55 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-2.56 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-2.60 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-2.61 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-2.70 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-2.71 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version7.x-2.72 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-1.0 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-1.1 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-1.2 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-1.3 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-1.4 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-1.5 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-1.6 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-1.7 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-1.8 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-1.9 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-1.10 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-1.11 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-1.12 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-1.121 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-1.122 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-2.0 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-2.1 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-2.11 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-2.12 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-2.13 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-2.14 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-2.15 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-2.16 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-2.17 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-2.18 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-2.19 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-2.20 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-2.21 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-2.22 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-2.23 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-2.24 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-2.25 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-2.26 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-2.27 SwPlatformdrupal

Miniorange ≫ Saml Sso - Service Provider Version8.x-2.28 SwPlatformdrupal

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.26%	0.168

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0	7.4	2.2	5.2	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

CWE-754 Improper Check for Unusual or Exceptional Conditions

The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.

https://www.drupal.org/sa-contrib-2026-031

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2026-5343

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-5343

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-5343

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-5343