Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
SharePoint Improper Certificate Validation Vulnerability - CVE-2019-1006 - Vulnerability Database
SharePoint

SharePoint Improper Certificate Validation Vulnerability - CVE-2019-1006

High
Reference: CVE-2019-1006
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2019-1006
Title: SharePoint Improper Certificate Validation Vulnerability
Overview:

An authentication bypass vulnerability exists in Windows Communication Foundation (WCF) and Windows Identity Foundation (WIF) allowing signing of SAML tokens with arbitrary symmetric keys aka 39WCF/WIF SAML Token Authentication Bypass Vulnerability39.