CVE-2013-2172

DEB

MediumConfirmedExploit available

jcp/xml/dsig/internal/dom/DOMCanonicalizationMethod.java in Apache Santuario XML Security for Java 1.4.x before 1.4.8 and 1.5.x before 1.5.…

CVSS

5.8

Medium

EPSS

0.06

p92

Published

2013-01-01

Updated

2013-01-01

Description

jcp/xml/dsig/internal/dom/DOMCanonicalizationMethod.java in Apache Santuario XML Security for Java 1.4.x before 1.4.8 and 1.5.x before 1.5.5 allows context-dependent attackers to spoof an XML Signature by using the CanonicalizationMethod parameter to specify an arbitrary weak "canonicalization algorithm to apply to the SignedInfo part of the Signature."

Tags · CWE

CWE-290

CWE-310

CAPEC-21

CAPEC-22

CAPEC-59

CAPEC-60

CAPEC-94

CAPEC-459

CAPEC-461

CAPEC-473

CAPEC-476

CAPEC-667

Affected products

Apache-commons-beanutilsApache-commons-beanutilsApache-commons-daemon-jsvc-eap6Apache-commons-daemon-jsvc-eap6Apache-cxfApache-cxfApache-cxf-xjc-utilsApache-cxf-xjc-utilsHibernate4Hibernate4HornetqHornetqHornetq-nativeHornetq-nativeHttpdHttpdInfinispanInfinispanIronjacamarIronjacamar

CVSS vector

AV:N/AC:M/Au:N/C:P/I:P/A:N

Timeline

2013-01-01

Published

2013-01-01

Updated

CVSS 3.1 breakdown

Attack Vector

AV: N

Network (N)

Attack Complexity

AC: M

Medium

Authentication

Au: N

None (N)

Confidentiality Impact

C: P

Partial

Integrity Impact

I: P

Partial

Availability Impact

A: N

None (N)

Exploit indicators

EPSS

0.059 · p92

Known exploited (KEV)

MITRE ATT&CK

Inferred via CAPEC

T1036.001Invalid Code Signature

└ via CAPEC-473 · CWE-290

T1134Access Token Manipulation

└ via CAPEC-21 · CWE-290

T1134.001Token Impersonation/Theft

└ via CAPEC-60 · CWE-290

T1528Steal Application Access Token

└ via CAPEC-21 · CWE-290

T1539Steal Web Session Cookie

└ via CAPEC-21 · CWE-290

T1550.004Web Session Cookie

└ via CAPEC-60 · CWE-290

T1553.002Code Signing

└ via CAPEC-473 · CWE-290

T1557Adversary-in-the-Middle

└ via CAPEC-94 · CWE-290

Known exploits — Сканер-ВС

CVE-2013-2172

github-poc · https://github.com/dawetmaster/CVE-2013-2172-santuario-java-vulnerable

Enterprise

Affected products

Httpd Jbossweb Jbossts Hornetq Jboss-as-client-all Jboss-as-domain-management Jboss-as-web Jboss-as-appclient Jboss-as-cli Jboss-as-clustering+89

Apache

Santuario Xml Security For Java

Product	Vendor	Status
apache-commons-beanutils		Tracked
apache-commons-beanutils		Tracked
apache-commons-daemon-jsvc-eap6		Tracked
apache-commons-daemon-jsvc-eap6		Tracked
apache-cxf		Tracked
apache-cxf		Tracked
apache-cxf-xjc-utils		Tracked
apache-cxf-xjc-utils		Tracked
hibernate4		Tracked
hibernate4		Tracked
hornetq		Tracked
hornetq		Tracked
hornetq-native		Tracked
hornetq-native		Tracked
httpd		Tracked
httpd		Tracked
infinispan		Tracked
infinispan		Tracked
ironjacamar		Tracked
ironjacamar		Tracked

Showing first 20 of 208

Source databases

DEB

CVE

RED

UBU

Related vulnerabilities

BDU:2022-06636