Search for packages
Package details: pkg:maven/org.apache.cxf/cxf-rt-rs-security-sso-saml@2.6.15
purl pkg:maven/org.apache.cxf/cxf-rt-rs-security-sso-saml@2.6.15
Next non-vulnerable version 2.7.18
Latest non-vulnerable version 3.1.3
Risk 4.5
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-f29w-fzs9-aaae
Aliases:
CVE-2015-5253
GHSA-3336-h95j-hvvf
The SAML Web SSO module in Apache CXF before 2.7.18, 3.0.x before 3.0.7, and 3.1.x before 3.1.3 allows remote authenticated users to bypass authentication via a crafted SAML response with a valid signed assertion, related to a "wrapping attack."
2.7.18
Affected by 0 other vulnerabilities.
3.0.7
Affected by 0 other vulnerabilities.
3.1.3
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T15:40:44.198805+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 36.1.3
2025-06-20T15:39:34.483897+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 36.1.3
2025-06-03T22:21:00.881478+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 36.1.0
2025-06-03T22:19:51.075309+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 36.1.0
2025-06-02T22:09:51.314563+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 36.1.2
2025-06-02T22:08:36.364089+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 36.1.2
2025-04-03T19:38:03.249710+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 36.0.0
2025-04-03T19:36:04.416565+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 36.0.0
2025-02-18T04:35:28.637933+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 35.1.0
2025-02-18T04:35:27.888651+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 35.1.0
2024-11-21T01:31:58.737795+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 35.0.0
2024-11-19T01:11:07.105434+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.3.2
2024-10-08T01:46:58.323820+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.0.2
2024-10-07T16:57:28.189588+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae https://github.com/advisories/GHSA-3336-h95j-hvvf 34.0.2
2024-09-23T01:48:41.034987+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.0.1
2024-09-22T17:21:40.553531+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae https://github.com/advisories/GHSA-3336-h95j-hvvf 34.0.1
2024-04-24T04:08:32.350810+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc4
2024-04-24T04:08:31.914274+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.0.0rc4
2024-04-23T18:12:11.133326+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae https://github.com/advisories/GHSA-3336-h95j-hvvf 34.0.0rc4
2024-04-23T18:12:10.714465+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc4
2024-01-10T06:44:22.324575+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc2
2024-01-10T06:44:21.883315+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.0.0rc2
2024-01-09T20:04:16.969618+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae https://github.com/advisories/GHSA-3336-h95j-hvvf 34.0.0rc2
2024-01-09T20:04:16.559861+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc2
2024-01-03T23:30:56.350930+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc1
2024-01-03T23:30:55.929387+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.0.0rc1
2024-01-03T15:30:45.452053+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc1