Search for packages
Package details: pkg:maven/org.apache.cxf/cxf-rt-rs-security-sso-saml@2.6.14
purl pkg:maven/org.apache.cxf/cxf-rt-rs-security-sso-saml@2.6.14
Next non-vulnerable version 2.7.18
Latest non-vulnerable version 3.1.3
Risk 4.5
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-f29w-fzs9-aaae
Aliases:
CVE-2015-5253
GHSA-3336-h95j-hvvf
The SAML Web SSO module in Apache CXF before 2.7.18, 3.0.x before 3.0.7, and 3.1.x before 3.1.3 allows remote authenticated users to bypass authentication via a crafted SAML response with a valid signed assertion, related to a "wrapping attack."
2.7.18
Affected by 0 other vulnerabilities.
3.0.7
Affected by 0 other vulnerabilities.
3.1.3
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T15:40:44.196982+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 36.1.3
2025-06-20T15:39:34.482074+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 36.1.3
2025-06-03T22:21:00.879681+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 36.1.0
2025-06-03T22:19:51.073534+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 36.1.0
2025-06-02T22:09:51.312822+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 36.1.2
2025-06-02T22:08:36.362451+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 36.1.2
2025-04-03T19:38:03.244790+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 36.0.0
2025-04-03T19:36:04.411728+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 36.0.0
2025-02-18T04:35:28.633076+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 35.1.0
2025-02-18T04:35:27.883810+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 35.1.0
2024-11-21T01:31:58.732830+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 35.0.0
2024-11-19T01:11:07.100593+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.3.2
2024-10-08T01:46:58.318887+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.0.2
2024-10-07T16:57:28.184717+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae https://github.com/advisories/GHSA-3336-h95j-hvvf 34.0.2
2024-09-23T01:48:41.030163+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.0.1
2024-09-22T17:21:40.548784+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae https://github.com/advisories/GHSA-3336-h95j-hvvf 34.0.1
2024-04-24T04:08:32.346148+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc4
2024-04-24T04:08:31.909553+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.0.0rc4
2024-04-23T18:12:11.128654+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae https://github.com/advisories/GHSA-3336-h95j-hvvf 34.0.0rc4
2024-04-23T18:12:10.709912+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc4
2024-01-10T06:44:22.319911+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc2
2024-01-10T06:44:21.878427+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.0.0rc2
2024-01-09T20:04:16.964971+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae https://github.com/advisories/GHSA-3336-h95j-hvvf 34.0.0rc2
2024-01-09T20:04:16.555213+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc2
2024-01-03T23:30:56.346283+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc1
2024-01-03T23:30:55.924725+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.0.0rc1
2024-01-03T15:30:45.447384+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc1