ruby-saml

Security Risk Profile

/100

medium

Security Risk Score

Comprehensive risk assessment based on 2 vulnerabilities, EPSS scores, exploitation status, and remediation availability.

📅 Data spans from March 12, 2025 to present

Total CVEs

Critical+High

Exploited

Unpatched

Threat Assessment

Avg CVSS

8.8

Base severity

Avg EPSS

Exploit probability

Unpatched

Critical/High

Risk Level

47/100

medium

Severity Distribution

Critical

High

Medium

Low

Exploit Likelihood

>50% chance

20-50%

5-20%

<5%

Age Distribution

Common Weaknesses (CWE)

No CWE data available

Most Affected Products

1. OmniAuth Omniauth Saml Ruby6

2. rubygems/ruby-saml4

3. onelogin Ruby-SAML4

4. ruby-saml ruby-saml2

5. debian/ruby-saml2

Recent Vulnerabilities

See more →

CVE-2025-25293

CVSS 7.7EPSS 0%high

GHSL-2024-355: DoS in ruby-saml - CVE-2025-25293

3/12/2025

CVE-2025-25291

CVSS 9.8EPSS 1%critical

GHSL-2024-329_GHSL-2024-330: Authentication bypasses in ruby-saml - CVE-2025-25291, CVE-2025-25292