CVE-2012-5633

2013-03-12T23:55:00
ID CVE-2012-5633
Type cve
Reporter cve@mitre.org
Modified 2020-11-12T14:15:00

Description

The URIMappingInterceptor in Apache CXF before 2.5.8, 2.6.x before 2.6.5, and 2.7.x before 2.7.2, when using the WSS4JInInterceptor, bypasses WS-Security processing, which allows remote attackers to obtain access to SOAP services via an HTTP GET request.