February 21, 2025 By Tushar Subhra Dutta
A critical security flaw in Sitevision CMS versions 10.3.1 and older has exposed SAML authentication signing keys, enabling potential authentication bypass and session hijacking.
The vulnerability, tracked as CVE-2022-35202, stems from weak auto-generated passwords protecting Java keystores, which could be extracted and brute-forced to compromise private keys.
Sitevision, a widely adopted content management system in Sweden’s public sector and enterprise environments, relies on SAML for secure authentication flows.
This vulnerability highlights systemic risks in automated credential generation and WebDAV misconfigurations. The vulnerability chain begins with Sitevision’s use of WebDAV for content management.
