Auth bypass in Apache Cxf
CVE-2014-3623
Apache WSS4J before 1.6.17 and 2.x before 2.0.2, as used in Apache CXF 2.7.x before 2.7.13 and 3.0.x before 3.0.2, when using TransportBinding, does not properly enforce the SAML SubjectConfirmation method security semantics, which allows…
Vulnerability class: Broken Authentication
EPSS: 0.025 (85.6th percentile) — read the EPSS interpretation.
Affected products
- Apache Cxf
- Apache Wss4j
- N/a — versions n/a
Weakness classification (CWE)
Public proof-of-concept exploits
References
- 70736 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_BID)
- RHSA-2015:0675 (x_refsource_REDHAT, vendor-advisory, Third Party Advisory)
- [oss-security] 20141024 New security advisories released for Apache CXF (mailing-list, x_refsource_MLIST, Mailing List, Third Party Advisory)
- RHSA-2015:0850 (x_refsource_REDHAT, vendor-advisory, Third Party Advisory)
- 61909 (x_refsource_SECUNIA, Third Party Advisory, third-party-advisory)
- secalert@redhat.com (x_refsource_CONFIRM, Vendor Advisory)
- RHSA-2015:0851 (x_refsource_REDHAT, vendor-advisory, Third Party Advisory)
- RHSA-2015:0236 (x_refsource_REDHAT, vendor-advisory, Third Party Advisory)
- apache-cxf-cve20143623-sec-bypass(97754) (VDB Entry, vdb-entry, x_refsource_XF)
- [cxf-commits] 20200116 svn commit: r1055336 - in /websites/production/cxf/content: cache/main.pageCache security-advisories.data/CVE-2019-12423.txt.asc security-advisories.data/CVE-2019-17573.txt.asc security-advisories.html (mailing-list, x_refsource_MLIST)
Frequently asked questions
- What is CVE-2014-3623?
- CVE-2014-3623 is a vulnerability in Apache Cxf, classified under Improper Authentication. Published 2014-10-30.
- Is CVE-2014-3623 known to be exploited?
- 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.