CVE-2015-5253 is a vulnerability in Apache CXF
Published on November 18, 2015

The SAML Web SSO module in Apache CXF before 2.7.18, 3.0.x before 3.0.7, and 3.1.x before 3.1.3 allows remote authenticated users to bypass authentication via a crafted SAML response with a valid signed assertion, related to a "wrapping attack."

Vendor Advisory NVD

Products Associated with CVE-2015-5253

Want to know whenever a new CVE is published for Apache CXF? stack.watch will email you.

Apache CXF

Exploit Probability

EPSS

0.34%

Percentile

56.11%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2015-5253 is a vulnerability in Apache CXFPublished on November 18, 2015

Products Associated with CVE-2015-5253

Exploit Probability

CVE-2015-5253 is a vulnerability in Apache CXF
Published on November 18, 2015