admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2021-04-02 11:00:41 +00:00
parent cd35211bc8
commit 8e68fe9abe
No known key found for this signature in database
GPG Key ID: 5708902F06FEF743
1 changed files with 5 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
2021/22xxx/CVE-2021-22696.json
View File

@ -40,7 +40,7 @@
"description_data": [
{
"lang": "eng",
"value": "CXF supports (via JwtRequestCodeFilter) passing OAuth 2 parameters via a JWT token as opposed to query parameters (see: The OAuth 2.0 Authorization Framework: JWT Secured Authorization Request (JAR)). Instead of sending a JWT token as a \"request\" parameter, the spec also supports specifying a URI from which to retrieve a JWT token from via the \"request_uri\" parameter.\n\nCXF was not validating the \"request_uri\" parameter (apart from ensuring it uses \"https) and was making a REST request to the parameter in the request to retrieve a token.\n\nThis means that CXF was vulnerable to DDos attacks on the authorization server, as specified in section 10.4.1 of the spec. \n\nThis issue affects Apache CXF versions prior to 3.4.3; Apache CXF versions prior to 3.3.10."
"value": "CXF supports (via JwtRequestCodeFilter) passing OAuth 2 parameters via a JWT token as opposed to query parameters (see: The OAuth 2.0 Authorization Framework: JWT Secured Authorization Request (JAR)). Instead of sending a JWT token as a \"request\" parameter, the spec also supports specifying a URI from which to retrieve a JWT token from via the \"request_uri\" parameter. CXF was not validating the \"request_uri\" parameter (apart from ensuring it uses \"https) and was making a REST request to the parameter in the request to retrieve a token. This means that CXF was vulnerable to DDos attacks on the authorization server, as specified in section 10.4.1 of the spec. This issue affects Apache CXF versions prior to 3.4.3; Apache CXF versions prior to 3.3.10."
}
]
},
@ -71,12 +71,13 @@
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"url": "https://cxf.apache.org/security-advisories.data/CVE-2021-22696.txt.asc"
"refsource": "MISC",
"url": "https://cxf.apache.org/security-advisories.data/CVE-2021-22696.txt.asc",
"name": "https://cxf.apache.org/security-advisories.data/CVE-2021-22696.txt.asc"
}
]
},
"source": {
"discovery": "UNKNOWN"
}
}
}