2 matches found
CVE-2025-59154 Openfire allows potential identity spoofing via unsafe CN parsing
Openfire is an XMPP server licensed under the Open Source Apache License. Openfire’s SASL EXTERNAL mechanism for client TLS authentication contains a vulnerability in how it extracts user identities from X.509 certificates. Instead of parsing the structured ASN.1 data, the code calls...
CVE-2025-59154
Openfire’s SASL EXTERNAL client TLS authentication uses X509Certificate.getSubjectDN().getName() with a regex to extract CN, producing a provider-dependent string that can fail to escape characters. This allows crafted DN values (e.g., OU="CN=admin,") to masquerade as another user by spoofing the...