Vuln
·
Scope
Home
Packages
KEV
Critical
Insights
Jobs
Pricing
EN
中
Loading…
RubyGems/ruby-saml — 10 CVEs · VulnScope
pkg:RubyGems/
ruby-saml
10 total CVEs
CRITICAL
4
HIGH
3
✅ Check your installed version
Check
All known vulnerabilities
CRITICAL
10.0
CVE-2024-45409
ruby-saml - security update
from 0, < 1.12.3
CRITICAL
9.8
CVE-2025-25292
Ruby SAML vulnerable to SAML authentication bypass due to namespace handling (parser differential)
>= 1.13.0, < 1.18.0
CRITICAL
9.8
CVE-2025-25291
ruby-saml - security update
from 0, < 1.12.4
CRITICAL
9.8
ruby-saml vulnerable to XPath injection
from 0, < 1.0.0
HIGH
7.7
Ruby-SAML Improper Authentication vulnerability
from 0, < 1.7.0
HIGH
7.5
ruby-saml vulnerable to Remote Denial of Service (DoS) with compressed SAML responses
from 0, < 1.12.4
HIGH
7.5
Ruby-saml allows attackers to perform XML signature wrapping attacks
from 0, < 1.3.0
—
Ruby-saml allows a Libxml2 Canonicalization error to bypass Digest/Signature validation
from 0, < 1.18.0
—
Ruby-saml has a SAML authentication bypass due to namespace handling (parser differential)
from 0, < 1.18.0
—
ruby-saml - security update
from 0, < 1.18.1
CVE-2015-20108
CVE-2017-11428
CVE-2025-25293
CVE-2016-5697
CVE-2025-66568
CVE-2025-66567
CVE-2025-54572