Critical Samlify SSO Flaw Allows Attackers to Log In as Admin

A critical authentication bypass vulnerability has been discovered in Samlify, allowing attackers to impersonate administrative users by injecting unsigned malicious assertions into legitimately signed SAML responses. This flaw enables attackers to access administrative accounts without valid authentication, thereby compromising the security of systems using Samlify for single sign-on (SSO). The specific technical details and the actual impact of this vulnerability were not provided in the article.