Shibboleth Xmltooling
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Shibboleth Xmltooling.
By the Year
In 2026 there have been 0 vulnerabilities in Shibboleth Xmltooling. Xmltooling did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 1 | 7.50 |
It may take a day or so for new Xmltooling vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Shibboleth Xmltooling Security Vulnerabilities
Shibboleth XMLTooling SSRF <3.2.4 via crafted KeyInfo
CVE-2023-36661
7.5 - High
- June 25, 2023
Shibboleth XMLTooling before 3.2.4, as used in OpenSAML and Shibboleth Service Provider, allows SSRF via a crafted KeyInfo element. (This is fixed in, for example, Shibboleth Service Provider 3.4.1.3 on Windows.)
SSRF
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Shibboleth Xmltooling or by Shibboleth? Click the Watch button to subscribe.
