Search for packages
Package details: pkg:maven/org.apache.cxf/cxf-rt-rs-security-xml@3.0.0-milestone1
purl pkg:maven/org.apache.cxf/cxf-rt-rs-security-xml@3.0.0-milestone1
Next non-vulnerable version 3.3.10
Latest non-vulnerable version 3.4.3
Risk 4.5
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-gtfj-ry3n-aaae
Aliases:
CVE-2020-13954
GHSA-64x2-gq24-75pv
Cross-site scripting in Apache CXF
3.3.8
Affected by 1 other vulnerability.
3.4.1
Affected by 1 other vulnerability.
VCID-zggp-qr1y-aaaf
Aliases:
CVE-2021-22696
GHSA-7q4h-pj78-j7vg
Authorization service vulnerable to DDos attacks in Apache CFX
3.3.10
Affected by 0 other vulnerabilities.
3.4.3
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-vq6d-cmr8-aaah Denial of Service (DoS) via invalid JAX-RS SAML tokens The `SamlHeaderInHandler` in this package allows remote attackers to cause a denial of service (infinite loop) via a crafted SAML token in the authorization header of a request to a JAX-RS service. CVE-2014-3584
GHSA-gw5j-77f9-v2g2

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T15:00:44.929575+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 36.1.3
2025-06-20T15:00:44.703711+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf None 36.1.3
2025-06-20T14:53:15.598346+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae None 36.1.3
2025-06-20T14:53:13.786065+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 36.1.3
2025-06-03T21:44:00.321518+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 36.1.0
2025-06-03T21:44:00.104650+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf None 36.1.0
2025-06-03T21:36:54.299932+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae None 36.1.0
2025-06-03T21:36:52.484079+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 36.1.0
2025-06-02T21:27:36.436351+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 36.1.2
2025-06-02T21:27:36.185991+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf None 36.1.2
2025-06-02T21:19:28.646767+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae None 36.1.2
2025-06-02T21:19:26.760934+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 36.1.2
2025-04-03T18:17:11.797867+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 36.0.0
2025-04-03T18:17:11.117362+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf None 36.0.0
2025-04-03T18:02:28.041590+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae None 36.0.0
2025-04-03T18:02:25.673550+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 36.0.0
2025-02-18T00:02:49.255039+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf None 35.1.0
2025-02-18T00:02:42.245142+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 35.1.0
2025-02-17T23:33:14.191505+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae None 35.1.0
2025-02-17T23:33:10.089291+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 35.1.0
2024-11-20T22:59:06.224615+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 35.0.0
2024-11-20T22:37:45.587766+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 35.0.0
2024-11-18T22:45:44.319193+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 34.3.2
2024-11-18T22:29:00.760650+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 34.3.2
2024-10-07T23:45:58.017606+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 34.0.2
2024-10-07T23:29:42.114522+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 34.0.2
2024-09-23T00:00:14.096939+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 34.0.1
2024-09-22T23:43:44.510060+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 34.0.1
2024-09-17T22:37:36.724856+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2014-3584.yml 34.0.1
2024-05-17T13:04:52.538003+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2014-3584.yml 34.0.0rc4
2024-04-24T02:02:56.428756+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 34.0.0rc4
2024-04-24T02:02:55.776093+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf None 34.0.0rc4
2024-04-24T01:45:01.796553+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 34.0.0rc4
2024-04-24T01:44:56.899734+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae None 34.0.0rc4
2024-01-10T04:35:41.334955+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 34.0.0rc2
2024-01-10T04:35:40.685831+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf None 34.0.0rc2
2024-01-10T04:16:06.884620+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 34.0.0rc2
2024-01-10T04:16:01.978378+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae None 34.0.0rc2
2024-01-03T21:22:29.866174+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2021-22696.yml 34.0.0rc1
2024-01-03T21:22:29.209040+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf None 34.0.0rc1
2024-01-03T21:00:12.803208+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2020-13954.yml 34.0.0rc1
2024-01-03T21:00:07.803183+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae None 34.0.0rc1
2024-01-03T18:00:30.708316+00:00 GitLab Importer Fixing VCID-vq6d-cmr8-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-rs-security-xml/CVE-2014-3584.yml 34.0.0rc1