Ruby saml
This hub aggregates every CVE we track for Ruby saml, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
4
CVEs tracked
3
Critical
1
High
0
In CISA KEV
Severity distribution
CRITICAL3HIGH1
Monthly trend
0
1
0
0
0
0
0
3
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-082026-07
Latest CVEs
The 4 most recently published vulnerabilities affecting Ruby saml.
- CVE-2025-25292Ruby SAML vulnerable to SAML authentication bypass due to namespace handling (parser differential)9.8
- CVE-2025-25291ruby-saml vulnerable to SAML authentication bypass due to DOCTYPE handling (parser differential)9.8
- CVE-2025-25293ruby-saml vulnerable to Remote Denial of Service (DoS) with compressed SAML responses7.5
- CVE-2024-45409The Ruby SAML library vulnerable to a SAML authentication bypass via Incorrect XPath selector10.0
Product normalization is registry-driven with AI assist and human review. How it works