CVE-2025-25293
ruby-saml vulnerable to Remote Denial of Service (DoS) with compressed SAML responses
Description
ruby-saml provides security assertion markup language (SAML) single sign-on (SSO) for Ruby. Prior to versions 1.12.4 and 1.18.0, ruby-saml is susceptible to remote Denial of Service (DoS) with compressed SAML responses. ruby-saml uses zlib to decompress SAML responses in case they're compressed. It is possible to bypass the message size check with a compressed assertion since the message size is checked before inflation and not after. This issue may lead to remote Denial of Service (DoS). Versions 1.12.4 and 1.18.0 fix the issue.
How to fix CVE-2025-25293
To remediate CVE-2025-25293, upgrade the affected package to a fixed version below.
- —upgrade to 17.9.2 or later
- —upgrade to 1.11.0-1+deb11u2 or later
- —upgrade to 1.12.4 or later
Is CVE-2025-25293 being exploited?
Moderate — EPSS is 6.2%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (3)
- from 0, < 17.9.2
- from 0, < 1.11.0-1+deb11u2
- from 0, < 1.12.4
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 4.0 | — | CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P |
| osv | CVSS 3.1 | HIGH7.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |