Search for packages
Package details: pkg:maven/org.apache.cxf/cxf-rt-rs-security-sso-saml@2.6.11
purl pkg:maven/org.apache.cxf/cxf-rt-rs-security-sso-saml@2.6.11
Next non-vulnerable version 2.7.18
Latest non-vulnerable version 3.1.3
Risk 4.5
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-f29w-fzs9-aaae
Aliases:
CVE-2015-5253
GHSA-3336-h95j-hvvf
The SAML Web SSO module in Apache CXF before 2.7.18, 3.0.x before 3.0.7, and 3.1.x before 3.1.3 allows remote authenticated users to bypass authentication via a crafted SAML response with a valid signed assertion, related to a "wrapping attack."
2.7.18
Affected by 0 other vulnerabilities.
3.0.7
Affected by 0 other vulnerabilities.
3.1.3
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T15:40:44.191471+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 36.1.3
2025-06-20T15:39:34.476666+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 36.1.3
2025-06-03T22:21:00.874286+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 36.1.0
2025-06-03T22:19:51.068148+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 36.1.0
2025-06-02T22:09:51.307622+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 36.1.2
2025-06-02T22:08:36.357565+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 36.1.2
2025-04-03T19:38:03.230221+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 36.0.0
2025-04-03T19:36:04.397379+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 36.0.0
2025-02-18T04:35:28.618561+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 35.1.0
2025-02-18T04:35:27.869428+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 35.1.0
2024-11-21T01:31:58.718209+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 35.0.0
2024-11-19T01:11:07.086580+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.3.2
2024-10-08T01:46:58.302434+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.0.2
2024-10-07T16:57:28.170297+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae https://github.com/advisories/GHSA-3336-h95j-hvvf 34.0.2
2024-09-23T01:48:41.015868+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.0.1
2024-09-22T17:21:40.534440+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae https://github.com/advisories/GHSA-3336-h95j-hvvf 34.0.1
2024-04-24T04:08:32.332372+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc4
2024-04-24T04:08:31.895574+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.0.0rc4
2024-04-23T18:12:11.114678+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae https://github.com/advisories/GHSA-3336-h95j-hvvf 34.0.0rc4
2024-04-23T18:12:10.696139+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc4
2024-01-10T06:44:22.305909+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc2
2024-01-10T06:44:21.864367+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.0.0rc2
2024-01-09T20:04:16.951059+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae https://github.com/advisories/GHSA-3336-h95j-hvvf 34.0.0rc2
2024-01-09T20:04:16.541329+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc2
2024-01-03T23:30:56.332501+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc1
2024-01-03T23:30:55.910829+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.0.0rc1
2024-01-03T15:30:45.433625+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc1