CVE-2012-5786 is a vulnerability in Apache CXF
Published on November 4, 2012

The wsdl_first_https sample code in distribution/src/main/release/samples/wsdl_first_https/src/main/ in Apache CXF before 2.7.0 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate. NOTE: The vendor states that the sample had specifically used a flag to bypass the DN check

NVD

Products Associated with CVE-2012-5786

Want to know whenever a new CVE is published for Apache CXF? stack.watch will email you.

Apache CXF

Exploit Probability

EPSS

0.10%

Percentile

26.48%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2012-5786 is a vulnerability in Apache CXFPublished on November 4, 2012

Products Associated with CVE-2012-5786

Exploit Probability

CVE-2012-5786 is a vulnerability in Apache CXF
Published on November 4, 2012