This page collects WhisperX intelligence signals tagged #SAML. It is designed for humans, search engines, and AI agents: each item links to a canonical source-backed record with sector, source, timestamp, credibility, and exportable structured data.
A critical new vulnerability, CVE-2026-3055, is being actively probed in the wild, targeting Citrix NetScaler ADC and Gateway appliances configured as SAML Identity Providers. With a CVSS score of 9.3, this unauthenticated memory overread flaw—dubbed 'CitrixBleed 3'—allows attackers to directly leak sensitive session t...
A new exploit module has been added to the Metasploit Framework, targeting a critical memory leak vulnerability in Citrix NetScaler appliances configured as SAML identity providers. The module, identified as CVE-2026-3055, allows attackers to read arbitrary memory from vulnerable systems, potentially exposing sensitive...
A critical security vulnerability in the widely-used Node-SAML library allows attackers to bypass signature verification and directly modify authentication details within a valid SAML assertion. The flaw, tracked as CVE-2025-54419, stems from the library's method of loading the assertion from the original, unsigned res...