Vulnerability Details CVE-2018-8038
Versions of Apache CXF Fediz prior to 1.4.4 do not fully disable Document Type Declarations (DTDs) when either parsing the Identity Provider response in the application plugins, or in the Identity Provider itself when parsing certain XML-based parameters.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.415
EPSS Ranking 97.2%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
- http://cxf.apache.org/security-advisories.data/CVE-2018-8038.txt.asc
- http://www.securitytracker.com/id/1041220
- https://github.com/apache/cxf-fediz/commit/b6ed9865d0614332fa419fe4b6d0fe81bc2e660d
- https://lists.apache.org/thread.html/f0a6a05ec3b3a00458da43712b0ff3a2f573175d9bfb39fb0de21424%40%3Cdev.cxf.apache.org%3E
- https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf%40%3Ccommits.cxf.apache.org%3E
- https://lists.apache.org/thread.html/rc774278135816e7afc943dc9fc78eb0764f2c84a2b96470a0187315c%40%3Ccommits.cxf.apache.org%3E
- https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6%40%3Ccommits.cxf.apache.org%3E
- https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4%40%3Ccommits.cxf.apache.org%3E
- https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e%40%3Ccommits.cxf.apache.org%3E
- https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4%40%3Ccommits.cxf.apache.org%3E
- http://cxf.apache.org/security-advisories.data/CVE-2018-8038.txt.asc
- http://www.securitytracker.com/id/1041220
- https://github.com/apache/cxf-fediz/commit/b6ed9865d0614332fa419fe4b6d0fe81bc2e660d
- https://lists.apache.org/thread.html/f0a6a05ec3b3a00458da43712b0ff3a2f573175d9bfb39fb0de21424%40%3Cdev.cxf.apache.org%3E
- https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf%40%3Ccommits.cxf.apache.org%3E
- https://lists.apache.org/thread.html/rc774278135816e7afc943dc9fc78eb0764f2c84a2b96470a0187315c%40%3Ccommits.cxf.apache.org%3E
- https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6%40%3Ccommits.cxf.apache.org%3E
- https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4%40%3Ccommits.cxf.apache.org%3E
- https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e%40%3Ccommits.cxf.apache.org%3E
- https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4%40%3Ccommits.cxf.apache.org%3E
Products affected by CVE-2018-8038
-
cpe:2.3:a:apache:cxf_fediz:1.0.0
-
cpe:2.3:a:apache:cxf_fediz:1.0.1
-
cpe:2.3:a:apache:cxf_fediz:1.0.2
-
cpe:2.3:a:apache:cxf_fediz:1.0.3
-
cpe:2.3:a:apache:cxf_fediz:1.0.4
-
cpe:2.3:a:apache:cxf_fediz:1.1.0
-
cpe:2.3:a:apache:cxf_fediz:1.1.1
-
cpe:2.3:a:apache:cxf_fediz:1.1.2
-
cpe:2.3:a:apache:cxf_fediz:1.1.3
-
cpe:2.3:a:apache:cxf_fediz:1.2.0
-
cpe:2.3:a:apache:cxf_fediz:1.2.1
-
cpe:2.3:a:apache:cxf_fediz:1.2.2
-
cpe:2.3:a:apache:cxf_fediz:1.2.3
-
cpe:2.3:a:apache:cxf_fediz:1.2.4
-
cpe:2.3:a:apache:cxf_fediz:1.3.0
-
cpe:2.3:a:apache:cxf_fediz:1.3.1
-
cpe:2.3:a:apache:cxf_fediz:1.3.2
-
cpe:2.3:a:apache:cxf_fediz:1.3.3
-
cpe:2.3:a:apache:cxf_fediz:1.4.0
-
cpe:2.3:a:apache:cxf_fediz:1.4.1
-
cpe:2.3:a:apache:cxf_fediz:1.4.2
-
cpe:2.3:a:apache:cxf_fediz:1.4.3