Search for packages
Package details: pkg:maven/org.apache.cxf/cxf-rt-rs-security-xml@2.6.11
purl pkg:maven/org.apache.cxf/cxf-rt-rs-security-xml@2.6.11
Next non-vulnerable version 3.3.10
Latest non-vulnerable version 3.4.3
Risk 4.5
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-gtfj-ry3n-aaae
Aliases:
CVE-2020-13954
GHSA-64x2-gq24-75pv
Cross-site scripting in Apache CXF
3.3.8
Affected by 1 other vulnerability.
3.4.1
Affected by 1 other vulnerability.
VCID-zggp-qr1y-aaaf
Aliases:
CVE-2021-22696
GHSA-7q4h-pj78-j7vg
Authorization service vulnerable to DDos attacks in Apache CFX
3.3.10
Affected by 0 other vulnerabilities.
3.4.3
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-vq6d-cmr8-aaah Denial of Service (DoS) via invalid JAX-RS SAML tokens The `SamlHeaderInHandler` in this package allows remote attackers to cause a denial of service (infinite loop) via a crafted SAML token in the authorization header of a request to a JAX-RS service. CVE-2014-3584
GHSA-gw5j-77f9-v2g2

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T15:00:44.887309+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 36.1.3
2025-06-20T15:00:44.661581+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf None 36.1.3
2025-06-20T14:53:15.552347+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae None 36.1.3
2025-06-20T14:53:13.738501+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 36.1.3
2025-06-20T13:47:26.495048+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah None 36.1.3
2025-06-20T13:47:26.199031+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2014-3584.yml 36.1.3
2025-06-03T21:44:00.282690+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 36.1.0
2025-06-03T21:44:00.064431+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf None 36.1.0
2025-06-03T21:36:54.253517+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae None 36.1.0
2025-06-03T21:36:52.437486+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 36.1.0
2025-06-03T20:38:22.641459+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah None 36.1.0
2025-06-03T20:38:22.377464+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2014-3584.yml 36.1.0
2025-06-02T21:27:36.387317+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 36.1.2
2025-06-02T21:27:36.136599+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf None 36.1.2
2025-06-02T21:19:28.590849+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae None 36.1.2
2025-06-02T21:19:26.706394+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 36.1.2
2025-06-02T20:17:43.582894+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah None 36.1.2
2025-06-02T20:17:43.264792+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2014-3584.yml 36.1.2
2025-04-03T18:17:11.666440+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 36.0.0
2025-04-03T18:17:10.987524+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf None 36.0.0
2025-04-03T18:02:27.915592+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae None 36.0.0
2025-04-03T18:02:25.548405+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 36.0.0
2025-04-03T16:26:39.980481+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah None 36.0.0
2025-04-03T16:26:39.206515+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2014-3584.yml 36.0.0
2025-02-18T00:02:49.129444+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf None 35.1.0
2025-02-18T00:02:42.119124+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 35.1.0
2025-02-17T23:33:14.066058+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae None 35.1.0
2025-02-17T23:33:09.960771+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 35.1.0
2025-02-17T22:21:06.904897+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2014-3584.yml 35.1.0
2025-02-17T22:21:06.662225+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah None 35.1.0
2024-11-20T22:59:06.081808+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 35.0.0
2024-11-20T22:37:45.455213+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 35.0.0
2024-11-20T21:54:12.944196+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2014-3584.yml 35.0.0
2024-11-18T22:45:44.189805+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 34.3.2
2024-11-18T22:29:00.635129+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 34.3.2
2024-11-18T21:51:36.376028+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2014-3584.yml 34.3.2
2024-10-07T23:45:57.866278+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 34.0.2
2024-10-07T23:29:41.987216+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 34.0.2
2024-10-07T22:51:14.571053+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2014-3584.yml 34.0.2
2024-09-23T00:00:13.970463+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 34.0.1
2024-09-22T23:43:44.385431+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 34.0.1
2024-09-17T22:37:36.651796+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2014-3584.yml 34.0.1
2024-04-24T02:02:56.307946+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 34.0.0rc4
2024-04-24T02:02:55.656743+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf None 34.0.0rc4
2024-04-24T01:45:01.675236+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 34.0.0rc4
2024-04-24T01:44:56.780103+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae None 34.0.0rc4
2024-04-24T00:58:44.916045+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2014-3584.yml 34.0.0rc4
2024-04-24T00:58:44.707185+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah None 34.0.0rc4
2024-01-10T04:35:41.213102+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 34.0.0rc2
2024-01-10T04:35:40.565097+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf None 34.0.0rc2
2024-01-10T04:16:06.763313+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 34.0.0rc2
2024-01-10T04:16:01.858468+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae None 34.0.0rc2
2024-01-10T03:22:56.758774+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2014-3584.yml 34.0.0rc2
2024-01-10T03:22:56.536428+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah None 34.0.0rc2
2024-01-03T21:22:29.744788+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 34.0.0rc1
2024-01-03T21:22:29.089046+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf None 34.0.0rc1
2024-01-03T21:00:12.682113+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 34.0.0rc1
2024-01-03T21:00:07.683524+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae None 34.0.0rc1
2024-01-03T20:00:07.842368+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah None 34.0.0rc1
2024-01-03T18:00:30.639949+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2014-3584.yml 34.0.0rc1