Search for packages
Package details: pkg:maven/org.apache.cxf/cxf-rt-rs-security-xml@2.7.8
purl pkg:maven/org.apache.cxf/cxf-rt-rs-security-xml@2.7.8
Next non-vulnerable version 3.3.10
Latest non-vulnerable version 3.4.3
Risk 4.5
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-gtfj-ry3n-aaae
Aliases:
CVE-2020-13954
GHSA-64x2-gq24-75pv
Cross-site scripting in Apache CXF
3.3.8
Affected by 1 other vulnerability.
3.4.1
Affected by 1 other vulnerability.
VCID-zggp-qr1y-aaaf
Aliases:
CVE-2021-22696
GHSA-7q4h-pj78-j7vg
Authorization service vulnerable to DDos attacks in Apache CFX
3.3.10
Affected by 0 other vulnerabilities.
3.4.3
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-vq6d-cmr8-aaah Denial of Service (DoS) via invalid JAX-RS SAML tokens The `SamlHeaderInHandler` in this package allows remote attackers to cause a denial of service (infinite loop) via a crafted SAML token in the authorization header of a request to a JAX-RS service. CVE-2014-3584
GHSA-gw5j-77f9-v2g2

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T15:00:44.912000+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 36.1.3
2025-06-20T15:00:44.685873+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf None 36.1.3
2025-06-20T14:53:15.579171+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae None 36.1.3
2025-06-20T14:53:13.765927+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 36.1.3
2025-06-20T13:47:26.514676+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah None 36.1.3
2025-06-20T13:47:26.220732+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2014-3584.yml 36.1.3
2025-06-03T21:44:00.305211+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 36.1.0
2025-06-03T21:44:00.086999+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf None 36.1.0
2025-06-03T21:36:54.280276+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae None 36.1.0
2025-06-03T21:36:52.464398+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 36.1.0
2025-06-03T20:38:22.657504+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah None 36.1.0
2025-06-03T20:38:22.396727+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2014-3584.yml 36.1.0
2025-06-02T21:27:36.416066+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 36.1.2
2025-06-02T21:27:36.164531+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf None 36.1.2
2025-06-02T21:19:28.624073+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae None 36.1.2
2025-06-02T21:19:26.738322+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 36.1.2
2025-06-02T20:17:43.603442+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah None 36.1.2
2025-06-02T20:17:43.290410+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2014-3584.yml 36.1.2
2025-04-03T18:17:11.742276+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 36.0.0
2025-04-03T18:17:11.062670+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf None 36.0.0
2025-04-03T18:02:27.988093+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae None 36.0.0
2025-04-03T18:02:25.620731+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 36.0.0
2025-04-03T16:26:40.033540+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah None 36.0.0
2025-04-03T16:26:39.264504+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2014-3584.yml 36.0.0
2025-02-18T00:02:49.202186+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf None 35.1.0
2025-02-18T00:02:42.191842+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 35.1.0
2025-02-17T23:33:14.138564+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae None 35.1.0
2025-02-17T23:33:10.034838+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 35.1.0
2025-02-17T22:21:06.961948+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2014-3584.yml 35.1.0
2025-02-17T22:21:06.717840+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah None 35.1.0
2024-11-20T22:59:06.163071+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 35.0.0
2024-11-20T22:37:45.531345+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 35.0.0
2024-11-20T21:54:13.002841+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2014-3584.yml 35.0.0
2024-11-18T22:45:44.265883+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 34.3.2
2024-11-18T22:29:00.707243+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 34.3.2
2024-11-18T21:51:36.434345+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2014-3584.yml 34.3.2
2024-10-07T23:45:57.963574+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 34.0.2
2024-10-07T23:29:42.060747+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 34.0.2
2024-10-07T22:51:14.629039+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2014-3584.yml 34.0.2
2024-09-23T00:00:14.044032+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 34.0.1
2024-09-22T23:43:44.457610+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 34.0.1
2024-09-17T22:37:36.687994+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2014-3584.yml 34.0.1
2024-04-24T02:02:56.377807+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 34.0.0rc4
2024-04-24T02:02:55.725603+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf None 34.0.0rc4
2024-04-24T01:45:01.745291+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 34.0.0rc4
2024-04-24T01:44:56.849073+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae None 34.0.0rc4
2024-04-24T00:58:44.970239+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2014-3584.yml 34.0.0rc4
2024-04-24T00:58:44.757849+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah None 34.0.0rc4
2024-01-10T04:35:41.283369+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 34.0.0rc2
2024-01-10T04:35:40.634600+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf None 34.0.0rc2
2024-01-10T04:16:06.833275+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 34.0.0rc2
2024-01-10T04:16:01.927824+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae None 34.0.0rc2
2024-01-10T03:22:56.813270+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2014-3584.yml 34.0.0rc2
2024-01-10T03:22:56.585871+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah None 34.0.0rc2
2024-01-03T21:22:29.814790+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 34.0.0rc1
2024-01-03T21:22:29.158250+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf None 34.0.0rc1
2024-01-03T21:00:12.751874+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 34.0.0rc1
2024-01-03T21:00:07.752564+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae None 34.0.0rc1
2024-01-03T20:00:07.893934+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah None 34.0.0rc1
2024-01-03T18:00:30.674058+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2014-3584.yml 34.0.0rc1