Search for packages
Package details: pkg:maven/org.apache.cxf/cxf-rt-rs-security-sso-saml@2.6.17
purl pkg:maven/org.apache.cxf/cxf-rt-rs-security-sso-saml@2.6.17
Next non-vulnerable version 2.7.18
Latest non-vulnerable version 3.1.3
Risk 4.5
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-f29w-fzs9-aaae
Aliases:
CVE-2015-5253
GHSA-3336-h95j-hvvf
The SAML Web SSO module in Apache CXF before 2.7.18, 3.0.x before 3.0.7, and 3.1.x before 3.1.3 allows remote authenticated users to bypass authentication via a crafted SAML response with a valid signed assertion, related to a "wrapping attack."
2.7.18
Affected by 0 other vulnerabilities.
3.0.7
Affected by 0 other vulnerabilities.
3.1.3
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T15:40:44.202438+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 36.1.3
2025-06-20T15:39:34.488238+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 36.1.3
2025-06-03T22:21:00.885121+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 36.1.0
2025-06-03T22:19:51.078843+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 36.1.0
2025-06-02T22:09:51.317989+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 36.1.2
2025-06-02T22:08:36.367346+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 36.1.2
2025-04-03T19:38:03.259434+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 36.0.0
2025-04-03T19:36:04.426197+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 36.0.0
2025-02-18T04:35:28.647537+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 35.1.0
2025-02-18T04:35:27.898353+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 35.1.0
2024-11-21T01:31:58.747350+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 35.0.0
2024-11-19T01:11:07.114892+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.3.2
2024-10-08T01:46:58.333422+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.0.2
2024-10-07T16:57:28.199397+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae https://github.com/advisories/GHSA-3336-h95j-hvvf 34.0.2
2024-09-23T01:48:41.044590+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.0.1
2024-09-22T17:21:40.563314+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae https://github.com/advisories/GHSA-3336-h95j-hvvf 34.0.1
2024-04-24T04:08:32.360007+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc4
2024-04-24T04:08:31.923606+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.0.0rc4
2024-04-23T18:12:11.142697+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae https://github.com/advisories/GHSA-3336-h95j-hvvf 34.0.0rc4
2024-04-23T18:12:10.723747+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc4
2024-01-10T06:44:22.333991+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc2
2024-01-10T06:44:21.892784+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.0.0rc2
2024-01-09T20:04:16.978869+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae https://github.com/advisories/GHSA-3336-h95j-hvvf 34.0.0rc2
2024-01-09T20:04:16.569084+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc2
2024-01-03T23:30:56.360157+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc1
2024-01-03T23:30:55.938674+00:00 GitLab Importer Affected by VCID-f29w-fzs9-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-sso-saml/CVE-2015-5253.yml 34.0.0rc1
2024-01-03T15:30:45.461299+00:00 GHSA Importer Affected by VCID-f29w-fzs9-aaae None 34.0.0rc1