Overview
- Description
- Apache WSS4J before 1.6.17 and 2.x before 2.0.2, as used in Apache CXF 2.7.x before 2.7.13 and 3.0.x before 3.0.2, when using TransportBinding, does not properly enforce the SAML SubjectConfirmation method security semantics, which allows remote attackers to conduct spoofing attacks via unspecified vectors.
- Source
- secalert@redhat.com
- NVD status
- Modified
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:N/I:P/A:N
Weaknesses
- nvd@nist.gov
- CWE-287
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:apache:wss4j:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "87421C07-0C3B-4853-8D71-C730A859FF18",
"versionEndExcluding": "1.6.17"
},
{
"criteria": "cpe:2.3:a:apache:wss4j:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0DFCE4C7-55C0-4FAF-9115-E8281E9C4BE0",
"versionEndExcluding": "2.0.2",
"versionStartIncluding": "2.0.0"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:apache:cxf:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5332D81D-EAFA-422E-A9DF-DC322301BFBB",
"versionEndIncluding": "2.7.13",
"versionStartIncluding": "2.7.0"
},
{
"criteria": "cpe:2.3:a:apache:cxf:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "507176A5-89F5-448B-8411-1B88189E65F5",
"versionEndExcluding": "3.0.2",
"versionStartIncluding": "3.0.0"
}
],
"operator": "OR"
}
]
}
]