Lucene search

[email protected]CVE-2016-4464

HistorySep 21, 2016 - 6:59 p.m.

CVE-2016-4464

2016-09-2118:59:04

CWE-284

[email protected]

web.nvd.nist.gov

apache

cxf

fediz

saml

audiencerestriction

cve-2016-4464

security vulnerability

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.5 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.02 Low

EPSS

Percentile

88.9%

JSON

The application plugins in Apache CXF Fediz 1.2.x before 1.2.3 and 1.3.x before 1.3.1 do not match SAML AudienceRestriction values against configured audience URIs, which might allow remote attackers to have bypass intended restrictions and have unspecified other impact via a crafted SAML token with a trusted signature.

Affected configurations

NVD

Node

apachecxf_fedizMatch1.2.0

apachecxf_fedizMatch1.2.1

apachecxf_fedizMatch1.2.2

apachecxf_fedizMatch1.3.0

CPENameOperatorVersion
apache:cxf_fedizapache cxf fedizeq1.2.0
apache:cxf_fedizapache cxf fedizeq1.2.1
apache:cxf_fedizapache cxf fedizeq1.2.2
apache:cxf_fedizapache cxf fedizeq1.3.0

CPE	Name	Operator	Version
apache:cxf_fediz	apache cxf fediz	eq	1.2.0
apache:cxf_fediz	apache cxf fediz	eq	1.2.1
apache:cxf_fediz	apache cxf fediz	eq	1.2.2
apache:cxf_fediz	apache cxf fediz	eq	1.3.0

References

cxf.apache.org/security-advisories.data/CVE-2016-4464.txt.asc

www.openwall.com/lists/oss-security/2016/09/08/20

www.securityfocus.com/bid/92905

www.securitytracker.com/id/1036869

git-wip-us.apache.org/repos/asf?p=cxf-fediz.git%3Ba=commit%3Bh=0006581e9cacbeef46381a223e5671e524d416b6

lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf%40%3Ccommits.cxf.apache.org%3E

lists.apache.org/thread.html/rc774278135816e7afc943dc9fc78eb0764f2c84a2b96470a0187315c%40%3Ccommits.cxf.apache.org%3E

lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6%40%3Ccommits.cxf.apache.org%3E

lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4%40%3Ccommits.cxf.apache.org%3E

lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e%40%3Ccommits.cxf.apache.org%3E

lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4%40%3Ccommits.cxf.apache.org%3E

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.5 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.02 Low

EPSS

Percentile

88.9%

JSON

Related for CVE-2016-4464

github1 mageia1 cvelist1 osv1 nvd1 prion1 openvas1