Описание
Apache Axis2 allows remote attackers to forge messages and bypass authentication via a SAML assertion that lacks a Signature element, aka a "Signature exclusion attack," a different vulnerability than CVE-2012-4418.
Ссылки
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:apache:axis2:-:*:*:*:*:*:*:*
EPSS
Процентиль: 54%
0.0031
Низкий
6.4 Medium
CVSS2
Дефекты
CWE-287
Связанные уязвимости
redhat
больше 13 лет назад
Apache Axis2 allows remote attackers to forge messages and bypass authentication via a SAML assertion that lacks a Signature element, aka a "Signature exclusion attack," a different vulnerability than CVE-2012-4418.
debian
больше 13 лет назад
Apache Axis2 allows remote attackers to forge messages and bypass auth ...
EPSS
Процентиль: 54%
0.0031
Низкий
6.4 Medium
CVSS2
Дефекты
CWE-287