5 matches found
com.github.livesense:org.liveSense.sample.webServiceServlet (>=1.0.3 <=1.0.5), com.github.livesense:org.liveSense.service.cxf (>=1.0.3 <=1.0.5) +195 more potentially affected by CVE-2013-0239 via org.apache.cxf:cxf-rt-frontend-jaxrs (>=2.7.0 <=2.7.2)
org.apache.cxf:cxf-rt-frontend-jaxrs MAVEN version =2.7.0, =1.0.3, =1.0.3, =1.0.0, =0.4.0, =0.4.1, =2.3, =1.3.1, =1.4, =0.9, =2.9.1-SP.10, =1.1.0.Beta1, =1.1.0.Beta1, =1.1.0.Beta1, =1.1.0.Beta1, =1.2.0.Beta4 and more Source cves: CVE-2013-0239 Source advisory: OSV:GHSA-P5C5-6564-VVR8...
ai.platon.pulsar:pulsar-persist (>=1.9.0 <=1.10.23), com.argonio.gora:gora-accumulo (>=0.5 <=0.5.1) +148 more potentially affected by CVE-2013-0239 via org.apache.cxf:cxf-rt-frontend-jaxrs (>=2.1 <=2.5.8)
org.apache.cxf:cxf-rt-frontend-jaxrs MAVEN version =2.1, =1.9.0, =0.5, =0.5, =0.5, =0.5, =0.5, =0.5, =0.5, =4.0.0, =0.2.0, =1.0.2, =1.0.0, =1.0.0-beta-2 - com.meschbach.psi:salutator =2.4 and more Source cves: CVE-2013-0239 Source advisory: OSV:GHSA-P5C5-6564-VVR8...
Important: Red Hat Security Advisory: apache-cxf security update
An update for the Apache CXF component of JBoss Portal Platform 6.0.0 which fixes two security issues is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base...
Important: Red Hat Security Advisory: apache-cxf security update
An update for the Apache CXF component of JBoss Enterprise Application Platform 6.0.1 which fixes two security issues is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring Syste...
CVE-2013-0239
CVE-2013-0239 affects Apache CXF: versions before 2.5.9, 2.6.x before 2.6.6, and 2.7.x before 2.7.3. When plaintext UsernameToken WS-SecurityPolicy is enabled, a security header containing a UsernameToken element with no password can bypass authentication. This is an authentication bypass vulnera...