Authentication Bypass in European Commission EIDAS-Node

Due to insufficient certificate verification the European Commission eIDAS-Node accepted manipulated SAML messages, allowing an attacker to bypass eIDAS authentication and assuming someone else’s identity. This is a technical vulnerability description of … Read more

Similar