Apache

Cxf

57 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.37%
  • Veröffentlicht 12.06.2026 08:52:05
  • Zuletzt bearbeitet 16.06.2026 15:16:42

An authentication bypass vulnerability exists in the OAuth2 TokenIntrospectionService in Apache CXF. Due to a missing 'throw' keyword in the security context check, the introspection endpoint (/services/oauth2/introspect) can be accessed by any unaut...

  • EPSS 0.64%
  • Veröffentlicht 22.05.2026 12:17:25
  • Zuletzt bearbeitet 30.06.2026 03:19:53

The fix for CVE-2025-48913: Apache CXF: Untrusted JMS configuration can lead to RCE was not complete, meaning that another path in the code might lead to code execution capabilities, if untrusted users are allowed to configure JMS for Apache CXF. Us...

  • EPSS 0.34%
  • Veröffentlicht 22.05.2026 12:17:14
  • Zuletzt bearbeitet 22.05.2026 12:17:14

Insecure XML parser configuration in Apache CXF's WS-Transfer module may allow attackers to perform XXE attacks. Users are recommended to upgrade to versions 4.2.1, 4.1.6 or 3.6.11, which fix this issue.

Medienbericht
  • EPSS 0.68%
  • Veröffentlicht 22.05.2026 12:16:47
  • Zuletzt bearbeitet 30.06.2026 03:20:02

An LDAP injection vulnerability in the LDAP Certificate repository of the XKMS server in Apache CXF may allow an attacker to retrieve arbitrary certificates from the repository.  Users are recommended to upgrade to versions 4.2.1, 4.1.6 or 3.6.11, wh...

Medienbericht
  • EPSS 0.79%
  • Veröffentlicht 08.08.2025 09:21:22
  • Zuletzt bearbeitet 04.11.2025 22:16:17

If untrusted users are allowed to configure JMS for Apache CXF, previously they could use RMI or LDAP URLs, potentially leading to code execution capabilities. This interface is now restricted to reject those protocols, removing this possibility. U...

  • EPSS 0.62%
  • Veröffentlicht 15.07.2025 14:26:44
  • Zuletzt bearbeitet 04.11.2025 22:16:17

Apache CXF stores large stream based messages as temporary files on the local filesystem. A bug was introduced which means that the entire temporary file is read into memory and then logged. An attacker might be able to exploit this to cause a denial...

  • EPSS 1.94%
  • Veröffentlicht 21.01.2025 10:15:08
  • Zuletzt bearbeitet 15.12.2025 16:15:52

A potential denial of service vulnerability is present in versions of Apache CXF before 3.5.10, 3.6.5 and 4.0.6. In some edge cases, the CachedOutputStream instances may not be closed and, if backed by temporary files, may fill up the file system (it...

  • EPSS 1.2%
  • Veröffentlicht 19.07.2024 09:15:05
  • Zuletzt bearbeitet 21.11.2024 09:32:20

In versions of Apache CXF before 3.6.4 and 4.0.5 (3.5.x and lower versions are not impacted), a CXF HTTP client conduit may prevent HTTPClient instances from being garbage collected and it is possible that memory consumption will continue to increase...

  • EPSS 1.03%
  • Veröffentlicht 19.07.2024 09:15:04
  • Zuletzt bearbeitet 21.11.2024 09:08:12

A SSRF vulnerability in WADL service description in versions of Apache CXF before 4.0.5, 3.6.4 and 3.5.9 allows an attacker to perform SSRF style attacks on REST webservices. The attack only applies if a custom stylesheet parameter is configured.

  • EPSS 1.27%
  • Veröffentlicht 19.07.2024 09:15:04
  • Zuletzt bearbeitet 21.11.2024 09:14:20

An improper input validation of the p2c parameter in the Apache CXF JOSE code before 4.0.5, 3.6.4 and 3.5.9 allows an attacker to perform a denial of service attack by specifying a large value for this parameter in a token.