Safeguard
Tag

saml

Safeguard articles tagged "saml" — guides, analysis, and best practices for software supply chain and application security.

7 articles

Application Security

SAML SSO vulnerabilities: signature wrapping and assertion replay explained

A 2024 ruby-saml flaw (CVE-2024-45409, CVSS 9.8) let attackers forge SAML assertions and log in as any user, including admins — seven years after the same bug class was first disclosed.

Jul 8, 20266 min read
Vulnerability Analysis

Citrix NetScaler CVE-2026-3055: The SAML Memory-Overread CitrixBleed Echo of 2026

CVE-2026-3055 is an unauthenticated memory overread in NetScaler ADC/Gateway configured as a SAML IdP, CVSS 9.3, exploited since late March 2026 and drawing direct CitrixBleed comparisons. Full analysis.

May 6, 202611 min read
Best Practices

What is Single Sign-On (SSO)

SSO lets users log in once to access many apps — but it also concentrates identity into one high-value target. Here's how it works and its real risks.

Feb 15, 20266 min read
Vulnerability Analysis

CVE-2025-59718 in FortiOS: FortiCloud SSO SAML Bypass

An unauthenticated SAML message manipulation lets attackers log in as admin on FortiGate, FortiWeb, and FortiProxy. We unpack the bug and the IR steps.

Dec 11, 20256 min read
Concepts

What Is SAML

SAML lets an identity provider vouch for you to other applications using signed XML assertions. Learn how it powers enterprise single sign-on and how it works.

Sep 24, 20246 min read
Vulnerability Analysis

GitHub Enterprise Server CVE-2024-4985: SAML Authentication Bypass

A critical authentication bypass in GitHub Enterprise Server allowed attackers to forge SAML responses and gain administrator access to self-hosted GitHub instances without any credentials.

May 20, 20245 min read
Identity Security

SAML Security in a Supply Chain Context

SAML is the authentication backbone for enterprise SSO. Its XML-based attack surface makes it a high-value target for supply chain compromise.

May 12, 20225 min read
saml — Safeguard Blog