Drupal SAML SSO Security Bypass Vulnerability Advisory
Summary
CERT-Bund issued a security advisory regarding a vulnerability in Drupal SAML SSO module versions prior to 3.1.4. The flaw allows remote attackers to bypass security measures. The vulnerability has a CVSS Base Score of 7.4 (high) and Temporal Score of 6.4 (medium). Organizations using the affected module should apply available mitigations.
What changed
CERT-Bund published advisory WID-SEC-2026-0954 disclosing a security bypass vulnerability in Open Source Drupal SAML SSO versions below 3.1.4. The vulnerability enables remote attackers to circumvent security controls. CVSS Base Score is 7.4 (high severity) with a Temporal Score of 6.4 (medium). The vulnerability affects Drupal installations across Linux, UNIX, Windows, and other operating systems.
Organizations using Drupal SAML SSO module should immediately verify their current version and upgrade to version 3.1.4 or later to remediate the vulnerability. Where immediate patching is not feasible, apply available mitigations referenced in the advisory. System administrators should monitor for unusual authentication patterns as the bypass could enable unauthorized access to systems protected by SAML SSO.
What to do next
- Identify all Drupal installations running SAML SSO module
- Check module version; upgrade to 3.1.4 or later if below that version
- Apply available mitigations if immediate upgrade is not feasible
Source document (simplified)
[WID-SEC-2026-0954] Drupal (SAML SSO): Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen CVSS Base Score 7.4 (hoch) CVSS Temporal Score 6.4 (mittel) Remoteangriff ja Datum 01.04.2026 Stand 02.04.2026 Mitigation ja
Betroffene Systeme
Betriebssystem
- Linux
- Sonstiges
- UNIX
- Windows
Produktbeschreibung
Drupal ist ein freies Content-Management-System, basierend auf der Scriptsprache PHP und einer SQL-Datenbank. Über zahlreiche Extensions kann der Funktionsumfang der Core-Installation individuell erweitert werden.
Produkte
01.04.2026
- Open Source Drupal SAML SSO <3.1.4
Angriff
Angriff
Ein Angreifer kann eine Schwachstelle in Drupal SAML SSO ausnutzen, um Sicherheitsvorkehrungen zu umgehen. CVE Informationen Versionshistorie Feedback zum Advisory geben
Related changes
Source
Classification
Who this affects
Taxonomy
Browse Categories
Get Data Privacy & Cybersecurity alerts
Weekly digest. AI-summarized, no noise.
Free. Unsubscribe anytime.
Get alerts for this source
We'll email you when CERT-Bund Security Advisories publishes new changes.