---
title: "SAML Vulnerability(No Impact in Catchpoint)"
slug: "saml-vulnerabilityno-impact-in-catchpoint"
updated: 2023-01-06T15:49:07Z
published: 2023-01-06T15:49:07Z
---

> ## Documentation Index
> Fetch the complete documentation index at: https://docs.catchpoint.com/llms.txt
> Use this file to discover all available pages before exploring further.

# SAML Vulnerability (No Impact in Catchpoint)

There is a known SAML vulnerability which can impact some SAML implementations.

Multiple SAML libraries may incorrectly utilize the results of XML DOM traversal and canonicalization APIs in such a way that an attacker may be able to manipulate the SAML data without invalidating the cryptographic signature, allowing the attacker to potentially bypass authentication to SAML service providers. For more information about SAML Vulnerability, please refer to this [article](https://www.kb.cert.org/vuls/id/475445) from CERT.

Catchpoint, as a service provider, is **NOT IMPACTED** by this vulnerability as we do not rely on the affected XML parsers; the parser we use does *not* have the problem described here.