CVE-2014-2685

2014-09-0417:55:00

CWE-287

[email protected]

web.nvd.nist.gov

openid

authentication

bypass

zend framework

cve-2014-2685

9.3 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.016 Low

EPSS

Percentile

87.0%

JSON

The GenericConsumer class in the Consumer component in ZendOpenId before 2.0.2 and the Zend_OpenId_Consumer class in Zend Framework 1 before 1.12.4 violate the OpenID 2.0 protocol by ensuring only that at least one field is signed, which allows remote attackers to bypass authentication by leveraging an assertion from an OpenID provider.

CPENameOperatorVersion
zend:zend_frameworkzend zend frameworkeq1.10.6
zend:zend_frameworkzend zend frameworkeq1.10.0
zend:zend_frameworkzend zend frameworkeq1.12.0
zend:zend_frameworkzend zend frameworkeq1.11.0
zend:zend_frameworkzend zend frameworkeq1.10.3
zend:zend_frameworkzend zend frameworkeq1.11.4
zend:zend_frameworkzend zend frameworkeq1.7.4
zend:zend_frameworkzend zend frameworkeq1.7.5
zend:zend_frameworkzend zend frameworkeq1.10.5
zend:zend_frameworkzend zend frameworkeq1.11.11

CPE	Name	Operator	Version
zend:zend_framework	zend zend framework	eq	1.10.6
zend:zend_framework	zend zend framework	eq	1.10.0
zend:zend_framework	zend zend framework	eq	1.12.0
zend:zend_framework	zend zend framework	eq	1.11.0
zend:zend_framework	zend zend framework	eq	1.10.3
zend:zend_framework	zend zend framework	eq	1.11.4
zend:zend_framework	zend zend framework	eq	1.7.4
zend:zend_framework	zend zend framework	eq	1.7.5
zend:zend_framework	zend zend framework	eq	1.10.5
zend:zend_framework	zend zend framework	eq	1.11.11