๐Ÿ” CVE Alert

CVE-2026-54774

HIGH 7.4

CoreWCF: SamlSerializer skips SignatureValue verification when SAML signing token is not an X.509 certificate

CVSS Score
7.4
EPSS Score
0.1%
EPSS Percentile
5th

CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core. Prior to 1.8.1 and 1.9.1, SamlSerializer skips final SignatureValue verification when a CoreWCF service validates SAML tokens using a non-X.509 signing token, allowing an attacker to reference a non-X.509 SecurityToken key identifier and bypass assertion signature verification. This issue is fixed in versions 1.8.1 and 1.9.1.

CWE CWE-345 CWE-347
Vendor corewcf
Product corewcf
Published Jul 8, 2026
Last Updated Jul 10, 2026
Stay Ahead of the Next One

Get instant alerts for corewcf corewcf

Be the first to know when new high vulnerabilities affecting corewcf corewcf are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
None

Affected Versions

CoreWCF / CoreWCF
>= 1.9.0, < 1.9.1 < 1.8.1

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
github.com: https://github.com/CoreWCF/CoreWCF/security/advisories/GHSA-rpj7-hr7h-w6p9 github.com: https://github.com/CoreWCF/CoreWCF/commit/65d09022749854ba943e376aefb958dec05b00d8 github.com: https://github.com/CoreWCF/CoreWCF/commit/b914495ce63c44924664643b60a262e7595081a4 github.com: https://github.com/CoreWCF/CoreWCF/commit/e7454132876ecc7e2cf80e541a44376eeb54979b github.com: https://github.com/CoreWCF/CoreWCF/releases/tag/v1.8.1 github.com: https://github.com/CoreWCF/CoreWCF/releases/tag/v1.9.1