Search for packages
Package details: pkg:maven/org.apache.cxf/cxf-rt-rs-security-sso-saml@2.6.10
purl pkg:maven/org.apache.cxf/cxf-rt-rs-security-sso-saml@2.6.10
Next non-vulnerable version 2.7.18
Latest non-vulnerable version 3.1.3
Risk 4.5
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-f29w-fzs9-aaae
Aliases:
CVE-2015-5253
GHSA-3336-h95j-hvvf
The SAML Web SSO module in Apache CXF before 2.7.18, 3.0.x before 3.0.7, and 3.1.x before 3.1.3 allows remote authenticated users to bypass authentication via a crafted SAML response with a valid signed assertion, related to a "wrapping attack."
2.7.18
Affected by 0 other vulnerabilities.
3.0.7
Affected by 0 other vulnerabilities.
3.1.3
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T15:40:44.189655+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 36.1.3
2025-06-20T15:39:34.474851+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 36.1.3
2025-06-03T22:21:00.872499+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 36.1.0
2025-06-03T22:19:51.066351+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 36.1.0
2025-06-02T22:09:51.305875+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 36.1.2
2025-06-02T22:08:36.355907+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 36.1.2
2025-04-03T19:38:03.225417+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 36.0.0
2025-04-03T19:36:04.392515+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 36.0.0
2025-02-18T04:35:28.613728+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 35.1.0
2025-02-18T04:35:27.864560+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 35.1.0
2024-11-21T01:31:58.713248+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 35.0.0
2024-11-19T01:11:07.081863+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.3.2
2024-10-08T01:46:58.296753+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.0.2
2024-10-07T16:57:28.165566+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae https://github.com/advisories/GHSA-3336-h95j-hvvf 34.0.2
2024-09-23T01:48:41.011095+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.0.1
2024-09-22T17:21:40.529722+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae https://github.com/advisories/GHSA-3336-h95j-hvvf 34.0.1
2024-04-24T04:08:32.327695+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc4
2024-04-24T04:08:31.890976+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.0.0rc4
2024-04-23T18:12:11.109983+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae https://github.com/advisories/GHSA-3336-h95j-hvvf 34.0.0rc4
2024-04-23T18:12:10.691489+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc4
2024-01-10T06:44:22.301215+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc2
2024-01-10T06:44:21.858718+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.0.0rc2
2024-01-09T20:04:16.946397+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae https://github.com/advisories/GHSA-3336-h95j-hvvf 34.0.0rc2
2024-01-09T20:04:16.536696+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc2
2024-01-03T23:30:56.327782+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc1
2024-01-03T23:30:55.906152+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.0.0rc1
2024-01-03T15:30:45.428999+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc1