Vulnerabilities > Apache > CXF > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-07-19 CVE-2024-29736 Unspecified vulnerability in Apache CXF
A SSRF vulnerability in WADL service description in versions of Apache CXF before 4.0.5, 3.6.4 and 3.5.9 allows an attacker to perform SSRF style attacks on REST webservices.
network
low complexity
apache
critical
9.1
2022-12-13 CVE-2022-46364 Unspecified vulnerability in Apache CXF
A SSRF vulnerability in parsing the href attribute of XOP:Include in MTOM requests in versions of Apache CXF before 3.5.5 and 3.4.10 allows an attacker to perform SSRF style attacks on webservices that take at least one parameter of any type. 
network
low complexity
apache
critical
9.8
2019-11-06 CVE-2019-12419 Incorrect Authorization vulnerability in multiple products
Apache CXF before 3.3.4 and 3.2.11 provides all of the components that are required to build a fully fledged OpenId Connect service.
network
low complexity
apache oracle CWE-863
critical
9.8
2017-08-08 CVE-2012-0803 Improper Authentication vulnerability in Apache CXF 2.4.5/2.5.1
The WS-SP UsernameToken policy in Apache CXF 2.4.5 and 2.5.1 allows remote attackers to bypass authentication by sending an empty UsernameToken as part of a SOAP request.
network
low complexity
apache CWE-287
critical
9.8
2010-08-19 CVE-2010-2076 Inclusion of Functionality from Untrusted Control Sphere vulnerability in Apache CXF
Apache CXF 2.0.x before 2.0.13, 2.1.x before 2.1.10, and 2.2.x before 2.2.9, as used in Apache ServiceMix, Apache Camel, Apache Chemistry, Apache jUDDI, Apache Geronimo, and other products, does not properly reject DTDs in SOAP messages, which allows remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service (CPU and memory consumption) via a crafted DTD, as demonstrated by an entity declaration in a request to samples/wsdl_first_pure_xml, a similar issue to CVE-2010-1632.
network
low complexity
apache CWE-829
critical
9.8