Hauptseiten
Startseite
CyberNews
Quick IT-Tools
Suche
Updates
Security Tools
Breach Check
Phishing Check
IoC Extractor
SSL Check
E-Mail Header Analyzer
CVE-Suche
Software Check NEU
IT-Praxis
Firewall Rules
Security Checklists
Incident Response
Regex Tester NEU
Cron Builder NEU
Log Analyzer NEU
Informationen
Dokumentation
Statistiken
Impressum
Datenschutz
RSS Feed
© 2026 b3ncloud.net
B3NCLOUD ARTICLE INTELLIGENCE

ARTICLEVIEW

Zurück zu News

CVE-2026-55789 - Logto: SAML IdP injects user-controlled profile attributes raw into signed assertions, allowing privilege escalation at relying Service Providers

CVE ID :CVE-2026-55789 Published : July 10, 2026, 8:16 p.m. | 16 minutes ago Description :Logto is the modern, open-source auth infrastructure for SaaS and AI apps. Prior to 1.41.0, Logto's self-hosted SAML application IdP built the signed SAML response and assertion by string-substituting...

Original-Artikel öffnen Zurück zur Übersicht