EUVD-2026-35889
GHSA-ww38-37g9-m3q3
CVSS VectorNVD
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
Lifecycle Timeline
2DescriptionNVD
Since Spring Security SAML decrypts SAML Responses as well as elements of SAML LogoutRequests and LogoutResponses without requiring a valid signature, attackers may be able to craft these SAML payloads and use the Service Provider as a decryption oracle.
Affected versions: Spring Security 5.7.0 through 5.7.23; 5.8.0 through 5.8.25; 6.3.0 through 6.3.16; 6.4.0 through 6.4.16; 6.5.0 through 6.5.10; 7.0.0 through 7.0.5.
AnalysisAI
Decryption oracle exposure in Spring Security's SAML module allows unauthenticated remote attackers (PR:N, AV:N per CVSS) to submit crafted SAML Responses, LogoutRequests, and LogoutResponses to a Service Provider endpoint and leverage the SP's private key for decryption without presenting a valid XML signature. Affected deployments span Spring Security 5.7.x through 7.0.x that use SAML-based SSO or Single Logout. …
Unlock full vulnerability intelligence
- Risk assessment & exploitation conditions
- Attack chain visualization
- Remediation with exact patch versions
- Threat intelligence from 22 sources
- Personal watchlist & email alerts
Free forever · No credit card required
Attack ChainAIDerived
Hypothetical attack flow derived from CVE metadata
Vulnerability AssessmentAI
| Exploitation | Exploitation requires the target application to have Spring Security's SAML 2.0 integration enabled, specifically with at least one of the following features active: SAML SSO (exposing an Assertion Consumer Service endpoint) or SAML Single Logout (exposing a LogoutRequest or LogoutResponse endpoint). … Additional conditions and limiting factors are described in the full assessment. |
| Risk Assessment | CVSS 3.7 (Low) with AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N reflects a network-reachable, unauthenticated attack that is non-trivial to execute and yields only limited confidentiality impact. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in. |
| Exploit Scenario | An attacker who identifies that a target application exposes a Spring Security SAML ACS or SLO endpoint submits a sequence of crafted SAML messages containing attacker-controlled encrypted XML elements - without a valid IdP signature - directly to those endpoints over HTTPS. Because the SP decrypts the payload before checking signature validity, it applies its private key to the attacker's ciphertext and may leak decryption success or failure through HTTP response codes, error messages, or timing differences. … |
| Remediation | Consult the vendor advisory at https://spring.io/security/cve-2026-41694 for the definitive patched release versions - exact fix version numbers were not included in the input data and could not be independently confirmed (patch available per vendor advisory). … Detailed patch versions, workarounds, and compensating controls in full report. |
Threat intelligence, references, and detailed analysis are available after sign-in.
More from same product – last 7 days
Signed XML message tampering in SAP NetWeaver Application Server ABAP and ABAP Platform allows authenticated low-privile
A lack of cryptographic signature verification in the validateAccessToken function of bookcars v8.3 allows attackers to
Authentication bypass in NSA Ghidra versions prior to 12.1 allows any holder of a valid CA-signed certificate to imperso
Late signature validation in Siemens kas (pip/kas >= 4.8, < 5.3) allows an attacker who has already compromised a refere
Share
External POC / Exploit Code
Leaving vuln.today