SB2024091810 - Multiple vulnerabilities in Apache CXF

Description

This security bulletin contains information about 3 secuirty vulnerabilities.

1) Input validation error (CVE-ID: CVE-2024-32007)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists within the JOSE code due to insufficient validation of user-supplied input passed via the p2c parameter. A remote attacker can pass a large value for the affected parameter in a token and perform a denial of service (DoS) attack.

2) Server-Side Request Forgery (SSRF) (CVE-ID: CVE-2024-29736)

The disclosed vulnerability allows a remote attacker to perform SSRF attacks.

The vulnerability exists due to insufficient validation of user-supplied input passed via the WADL stylesheet parameter. A remote attacker can send a specially crafted HTTP request and trick the application to initiate requests to arbitrary systems.

Successful exploitation of this vulnerability requires that a custom stylesheet parameter is configured.

3) Memory leak (CVE-ID: CVE-2024-41172)

The vulnerability allows a remote attacker to perform DoS attack on the target system.

The vulnerability exists due memory leak in HTTPClient. A remote attacker can force the application to leak memory and perform denial of service attack.

Remediation

Install update from vendor's website.

References

• https://lists.apache.org/thread/stwrgsr1llb73nkl16klv9vjqgmmx633
• https://lists.apache.org/thread/4jtpsswn2r6xommol54p5mg263ysgdw2
• https://lists.apache.org/thread/n2hvbrgwpdtcqdccod8by28ynnolybl6