Apache CloudStack 4.5.x prior to 4.5.2.1, 4.6.x prior to 4.6.2.1, 4.7.x prior to 4.7.1.1, and 4.8.x prior to 4.8.0.1, when SAML-based authentication is enabled and used, allow remote malicious users to bypass authentication and access the user interface via vectors related to the SAML plugin.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache cloudstack 4.7.0 |
||
apache cloudstack 4.5.2 |
||
apache cloudstack 4.5.1 |
||
apache cloudstack 4.6.2 |
||
apache cloudstack 4.6.1 |
||
apache cloudstack 4.6.0 |
||
apache cloudstack 4.8 |