CVE-2026-5343 | THREATINT

Description

Improper Check for Unusual or Exceptional Conditions vulnerability in Drupal SAML SSO - Service Provider allows Privilege Escalation. This issue affects SAML SSO - Service Provider: from 0.0.0 before 3.1.4.

PUBLISHED Reserved 2026-04-01 | Published 2026-05-28 | Updated 2026-05-29 | Assigner drupal

Problem types

CWE-754 Improper Check for Unusual or Exceptional Conditions

Product status

Default status

unaffected

0.0.0 (semver) before 3.1.4

affected

Credits

Tim de Jong | Freelance Drupal Developer (tim_dj) finder

Sudhanshu Dhage (sudhanshu0542) remediation developer

Damien McKenna (damienmckenna) coordinator

Greg Knaddison (greggles) coordinator

Juraj Nemec (poker10) coordinator

Jess (xjm) coordinator

References

www.drupal.org/sa-contrib-2026-031

cve.org (CVE-2026-5343)

nvd.nist.gov (CVE-2026-5343)

Download JSON