Denial of Service Vulnerability in Apache CXF Fediz Versions Prior to 1.2.1
CVE-2015-5175

7.5HIGH

Key Information:

Vendor
Apache
Status
Cxf Fediz
Vendor
CVE Published:
7 June 2017

Summary

The vulnerability in Apache CXF Fediz allows remote attackers to exploit application plugins, resulting in a denial of service. This can disrupt the availability of services relying on Apache CXF Fediz, making it critical for organizations to ensure they are using the latest secure versions to mitigate potential attacks.

References

https://mail-archives.apache.org/mod_mbox/cxf-dev/201508....
mailing-listx_refsource_MLIST
http://www.openwall.com/lists/oss-security/2015/08/26/3
mailing-listx_refsource_MLIST
https://cxf.apache.org/security-advisories.data/CVE-2015-...
x_refsource_CONFIRM

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.