Security restrictions bypass in IBM Tivoli Federated Identity Manager

Published: 2018-03-07 16:10:56
Severity Low
Patch available YES
Number of vulnerabilities 1
CVE ID CVE-2018-1443
CVSSv3 5.5 [CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C]
CWE ID CWE-611
Exploitation vector Network
Public exploit Not available
Vulnerable software IBM Tivoli Federated Identity Manager
Vulnerable software versions IBM Tivoli Federated Identity Manager 6.2.2
IBM Tivoli Federated Identity Manager 6.2.1
IBM Tivoli Federated Identity Manager 6.2.0
Vendor URL IBM Corporation

Security Advisory

1) XXE attack

Description

The vulnerability allows a remote authenticated attacker to perform XXE attack and bypass security restrictions.

The vulnerability exists in SAML-based single sign-on (SSO) systems due to improper handling of XML External Entity (XXE) entries when parsing an XML file. A remote attacker can trick SAML systems into authenticating as a different user without knowledge of the victim users password and bypass security restrictions to perform further attacks.

Remediation

Install update from vendor's website.

External links

http://www-01.ibm.com/support/docview.wss?uid=swg22014161

Back to List