SAML Response Validation Disabled
Description
The SAML response validation is disabled, which can lead to insufficient verification of data authenticity. This can allow an attacker to manipulate the SAML response and gain unauthorized access.
Examples
Insecure Code
ruby
OneLogin::RubySaml::Response.new(response, { skip_audience: true })Secure Code
ruby
OneLogin::RubySaml::Response.new(response, { skip_audience: false })Remediation
Remove or set to false the skip validation settings (skip_audience, skip_authnstatement, skip_conditions, skip_destination, skip_recipient_check, skip_subject_confirmation) when creating a new OneLogin::RubySaml::Response or OneLogin::RubySaml::Settings object.
Rule Details
| Field | Value |
|---|---|
| ID | CODE-0437 |
| Category | Auth |
| Severity | HIGH |
| CWE | CWE-345 |
| Confidence | HIGH |
| Impact | MEDIUM |
| Likelihood | MEDIUM |
| Exploitability | MODERATE |
| Tags | saml, authentication |
| OWASP | N/A |