CVE-2025-54572

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2025-54572
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-54572.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-54572
Aliases
Downstream
Related
Published
2025-07-30T14:05:43.820Z
Modified
2025-12-02T20:12:33.766025Z
Severity
  • 6.9 (Medium) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N CVSS Calculator
Summary
Ruby SAML DOS vulnerability with large SAML response
Details

The Ruby SAML library is for implementing the client side of a SAML authorization. In versions 1.18.0 and below, a denial-of-service vulnerability exists in ruby-saml even with the messagemaxbytesize setting configured. The vulnerability occurs because the SAML response is validated for Base64 format prior to checking the message size, leading to potential resource exhaustion. This is fixed in version 1.18.1.

Database specific 
{
    "cna_assigner": "GitHub_M",
    "cwe_ids": [
        "CWE-400",
        "CWE-770"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/54xxx/CVE-2025-54572.json"
}
References

Affected packages

Git / github.com/saml-toolkits/ruby-saml

Affected ranges

Type
GIT
Repo
https://github.com/saml-toolkits/ruby-saml
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
8c395b5d75a2c4cd5516a705171b16a80cf19c35

Affected versions

0.*

0.7.3
0.8.0
0.8.1

1.*

1.3.1
1.4.0
1.4.1
1.4.2
1.4.3
1.5.0

v0.*

v0.2.0
v0.2.1
v0.2.2
v0.2.3
v0.3.0
v0.3.1
v0.3.2
v0.3.3
v0.3.4
v0.4.0
v0.4.1
v0.4.2
v0.4.3
v0.4.4
v0.4.5
v0.4.6
v0.4.7
v0.5.0
v0.5.1
v0.5.2
v0.5.3
v0.6.0
v0.7.1
v0.9
v0.9.1
v0.9.2

v1.*

v1.0.0
v1.1.0
v1.1.1
v1.1.2
v1.10.0
v1.10.1
v1.10.2
v1.11.0
v1.12.0
v1.12.1
v1.12.2
v1.13.0
v1.14.0
v1.15.0
v1.16.0
v1.17.0
v1.18.0
v1.2.0
v1.3.0
v1.6.0
v1.6.1
v1.6.2
v1.7.0
v1.7.1
v1.7.2
v1.8.0
v1.9.0