CVE-2025-47151 | Entr’ouvert Lasso 2.5.1/2.8.2 SAML Response lasso_node_impl_init_from_xml type confusion (TALOS-2025-2193)

Inserito da Angelo Barbosa | Nov 5, 2025 | CVE

A vulnerability was found in Entr’ouvert Lasso 2.5.1/2.8.2. It has been rated as critical. Affected is the function lasso_node_impl_init_from_xml of the component SAML Response Handler. Performing manipulation results in type confusion.

This vulnerability is known as CVE-2025-47151. Remote exploitation of the attack is possible. No exploit is available.

CVE-2025-47151 | Entr’ouvert Lasso 2.5.1/2.8.2 SAML Response lasso_node_impl_init_from_xml type confusion (TALOS-2025-2193)

Post correlati

CVE-2025-1909 | BuddyBoss Platform Pro Plugin up to 2.7.01 on WordPress Apple OAuth Provider improper authentication

CVE-2025-0502 | Crafter CMS up to 4.0.7/4.1.5 transmission of private resources into a new sphere (‘resource leak’)

CVE-2025-1868 | Famatech Corp Advanced IP Scanner/Advanced Port Scanner information disclosure

CVE-2024-21840 | Hitachi Storage Plug-in for VMware vCenter up to 04.9.2 default permission (hitachi-sec-2024-108)