CVE-2023-6837

EPSS 0.32%
Published 15.12.2023 10:15:09
Last modified 05.06.2025 09:15:21
Source ed10eef1-636d-4fbe-9993-6890df
Teams watchlist Login
Open Login

Multiple WSO2 products have been identified as vulnerable to perform user impersonatoin using JIT provisioning. In order for this vulnerability to have any impact on your deployment, following conditions must be met:

  *  An IDP configured for federated authentication and JIT provisioning enabled with the "Prompt for username, password and consent" option.
  *  A service provider that uses the above IDP for federated authentication and has the "Assert identity using mapped local subject identifier" flag enabled.


Attacker should have:

  *  A fresh valid user account in the federated IDP that has not been used earlier.
  *  Knowledge of the username of a valid user in the local IDP.


When all preconditions are met, a malicious actor could use JIT provisioning flow to perform user impersonation.

Affected products Warnungen 0 Metrics 3 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Wso2 ≫ Api Manager Version >= 2.5.0 < 2.5.0.32

Wso2 ≫ Api Manager Version >= 2.6.0 < 2.6.0.52

Wso2 ≫ Api Manager Version >= 3.0.0 < 3.0.0.50

Wso2 ≫ Api Manager Version >= 3.1.0 < 3.1.0.72

Wso2 ≫ Api Manager Version >= 3.2.0 < 3.2.0.86

Wso2 ≫ Api Manager Version >= 4.0.0 < 4.0.0.35

Wso2 ≫ Identity Server Version >= 5.6.0 < 5.6.0.16

Wso2 ≫ Identity Server Version >= 5.7.0 < 5.7.0.35

Wso2 ≫ Identity Server Version >= 5.8.0 < 5.8.0.26

Wso2 ≫ Identity Server Version >= 5.9.0 < 5.9.0.38

Wso2 ≫ Identity Server Version >= 5.10.0 < 5.10.0.78

Wso2 ≫ Identity Server Version >= 5.11.0 < 5.11.0.69

Wso2 ≫ Identity Server As Key Manager Version >= 5.6.0 < 5.6.0.17

Wso2 ≫ Identity Server As Key Manager Version >= 5.7.0 < 5.7.0.39

Wso2 ≫ Identity Server As Key Manager Version >= 5.9.0 < 5.9.0.45

Wso2 ≫ Identity Server As Key Manager Version >= 5.10.0 < 5.10.0.80

Wso2 ≫ Carbon Identity Application Authentication Endpoint Version < 5.11.256.3

Wso2 ≫ Carbon Identity Application Authentication Endpoint Version >= 5.11.257.0 < 5.12.153.19

Wso2 ≫ Carbon Identity Application Authentication Endpoint Version >= 5.12.154.0 < 5.20.254

Wso2 ≫ Carbon Identity Application Authentication Framework Version < 5.11.256.3

Wso2 ≫ Carbon Identity Application Authentication Framework Version >= 5.11.257.0 < 5.12.153.21

Wso2 ≫ Carbon Identity Application Authentication Framework Version >= 5.12.154.0 < 5.12.387.7

Wso2 ≫ Carbon Identity Application Authentication Framework Version >= 5.12.388.0 < 5.14.97.22

Wso2 ≫ Carbon Identity Application Authentication Framework Version >= 5.14.98.0 < 5.17.5.106

Wso2 ≫ Carbon Identity Application Authentication Framework Version >= 5.17.6.0 < 5.18.187.76

Wso2 ≫ Carbon Identity Application Authentication Framework Version >= 5.18.188.0 < 5.20.254

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.32%	0.541

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	8.2	1.8	5.8	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N
ed10eef1-636d-4fbe-9993-6890dfa878f8	8.5	3.1	4.7	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N

CWE-863 Incorrect Authorization

The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.

https://security.docs.wso2.com/en/latest/security-announcements/security-advisories/2022/WSO2-2021-1573/

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-6837

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-6837

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-6837

EUVD