Home Packages KEV Critical Insights Jobs Pricing

Loading…

Data from OSV.dev, CISA KEV, and FIRST EPSS.Sync status GitHub

CVE-2017-16852 — shibboleth-sp2 - security update · VulnScope

CVE-2017-16852

shibboleth-sp2 - security update

EPSS 0.32%

How to fix CVE-2017-16852

To remediate CVE-2017-16852, upgrade the affected package to a fixed version below.

Debian/shibboleth-sp2—upgrade to 2.4.3+dfsg-5+deb7u2 or later
Debian/shibboleth-sp2—upgrade to 2.5.3+dfsg-2+deb8u1 or later

Is CVE-2017-16852 being exploited?

Low — EPSS is 0.3%, meaning exploitation activity has not been observed at scale.

Affected packages (2)

Debian/shibboleth-sp2from 0, < 2.4.3+dfsg-5+deb7u2
from 0, < 2.5.3+dfsg-2+deb8u1

Metadata

Published: 11/18/2017
Modified: 3/9/2026

Also known as:

DSA-4038-1dsa
DEBIAN-CVE-2017-16852debian
DLA-1179-1dla

Debian/shibboleth-sp2