Login Sign Up

Onelogin Security Vulnerabilities (CVEs)

Track 6 security vulnerabilities affecting Onelogin products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.

5 Critical
1 High
🔔 Get Alerts for Onelogin
CVE-2025-66567 9.1

The ruby-saml library contains an authentication bypass vulnerability due to XML parsing differences between ReXML and Nokogiri, allowing attackers to...

Dec 9, 2025
CVE-2025-66568 9.1

The ruby-saml library versions up to 1.12.4 are vulnerable to authentication bypass via Signature Wrapping attacks. Attackers can exploit libxml2's ca...

Dec 9, 2025
CVE-2025-25291 9.8

CVE-2025-25291 is an authentication bypass vulnerability in ruby-saml that allows attackers to bypass SAML single sign-on authentication via signature...

Mar 12, 2025
CVE-2025-25293 7.5

This vulnerability in ruby-saml allows remote attackers to cause Denial of Service (DoS) by sending specially crafted compressed SAML responses. The l...

Mar 12, 2025
CVE-2024-45409 10.0

CVE-2024-45409 is a critical authentication bypass vulnerability in the Ruby SAML library where SAML response signatures are not properly verified. Th...

Sep 10, 2024
CVE-2015-20108 9.8

This vulnerability in the ruby-saml gem allows XPath injection leading to remote code execution. Attackers can execute arbitrary code on systems using...

May 27, 2023

Why Monitor Onelogin Security Vulnerabilities?

Real-time CVE tracking: Our automated system monitors 6+ known vulnerabilities affecting Onelogin products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.

Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Onelogin packages in under 60 seconds. No agents required - completely agentless scanning that works across Onelogin deployments.

Free vulnerability database: Access detailed information about every Onelogin CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.

🚀 Get Started in 60 Seconds

  • Register free account & add your servers
  • Run one-time scan or schedule automatic monitoring (every 1-24 hours)
  • Receive instant alerts when new Onelogin CVEs affect your systems
  • Access dashboard with severity breakdown & fix instructions
Start Monitoring Onelogin CVEs Free