Lucene search
K

5 matches found

vulnersOsv
vulnersOsv
added 2018/10/18 4:56 p.m.6 views

org.apache.cxf.fediz:apache-fediz (>=1.3.0 <=1.3.1) potentially affected by CVE-2017-7661 via org.apache.cxf.fediz:fediz-jetty9 (>=1.3.0 <=1.3.1)

org.apache.cxf.fediz:fediz-jetty9 MAVEN version =1.3.0, =1.3.0, =1.3.1 Source cves: CVE-2017-7661 Source advisory: OSV:GHSA-WHW7-H25V-9QVX...

8.8CVSS7.2AI score0.01104EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2018/10/18 4:56 p.m.2 views

org.apache.cxf.fediz.examples:spring2Webapp (>=1.3.0 <=1.3.1), org.apache.cxf.fediz.systests.webapps:fediz-systests-webapps-spring2 (>=1.3.0 <=1.3.1) +1 more potentially affected by CVE-2017-7661 via org.apache.cxf.fediz:fediz-spring2 (>=1.3.0 <=1.3.1)

org.apache.cxf.fediz:fediz-spring2 MAVEN version =1.3.0, =1.3.0, =1.3.0, =1.3.0, =1.3.1 Source cves: CVE-2017-7661 Source advisory: OSV:GHSA-WHW7-H25V-9QVX...

8.8CVSS7.2AI score0.01104EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2018/10/18 4:56 p.m.5 views

org.apache.cxf.fediz:apache-fediz (>=1.3.0 <=1.3.1) potentially affected by CVE-2017-7661 via org.apache.cxf.fediz:fediz-jetty8 (>=1.3.0 <=1.3.1)

org.apache.cxf.fediz:fediz-jetty8 MAVEN version =1.3.0, =1.3.0, =1.3.1 Source cves: CVE-2017-7661 Source advisory: OSV:GHSA-WHW7-H25V-9QVX...

8.8CVSS7.2AI score0.01104EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2018/10/18 4:56 p.m.4 views

org.apache.cxf.fediz.examples:spring2Webapp (>=1.1.0 <=1.2.3), org.apache.cxf.fediz.systests.webapps:fediz-systests-webapps-spring2 (>=1.2.0 <=1.2.3) +2 more potentially affected by CVE-2017-7661 via org.apache.cxf.fediz:fediz-spring2 (>=1.1.0 <=1.2.3)

org.apache.cxf.fediz:fediz-spring2 MAVEN version =1.1.0, =1.1.0, =1.2.0, =1.1.0, =1.1.0, =1.2.3 Source cves: CVE-2017-7661 Source advisory: OSV:GHSA-WHW7-H25V-9QVX...

8.8CVSS7.2AI score0.01104EPSS
Exploits0
CVE
CVE
added 2017/05/16 5:0 p.m.72 views

CVE-2017-7661

CVE-2017-7661 affects Apache CXF Fediz container-specific WS-Federation plugins (Spring 2, Spring 3, Jetty 8, Jetty 9) in CXF Fediz prior to versions 1.4.0, 1.3.2, and 1.2.4. The issue is described as a CSRF‑style vulnerability. The connected documents confirm the affected plugins and versions bu...

8.8CVSS8.6AI score0.01104EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder