5

CVSS Score

Basic Information

CVE ID

CVE-2013-0239

GHSA ID

GHSA-p5c5-6564-vvr8

EPSS Score

0.88948%

CWE

CWE-287

Published

5/5/2022

Updated

12/21/2023

KEV Status

Technology

Java

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2013-0239

CVE-2013-0239: Improper Authentication in Apache CXF

Apache CXF before 2.5.9, 2.6.x before 2.6.6, and 2.7.x before 2.7.3, when the plaintext UsernameToken WS-SecurityPolicy is enabled, allows remote attackers to bypass authentication via a security header of a SOAP request containing a UsernameToken element that lacks a password child element.

(GitHub Advisory)

5

CVSS Score

Basic Information

CVE ID

CVE-2013-0239

GHSA ID

GHSA-p5c5-6564-vvr8

EPSS Score

0.88948%

CWE

CWE-287

Published

5/5/2022

Updated

12/21/2023

KEV Status

Technology

Java

Technical Details

CVSS Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
org.apache.cxf:cxf-rt-frontend-jaxrs	maven	< 2.5.9	2.5.9
org.apache.cxf:cxf-rt-frontend-jaxrs	maven	>= 2.6.0, < 2.6.6	2.6.6
org.apache.cxf:cxf-rt-frontend-jaxrs	maven	>= 2.7.0, < 2.7.3	2.7.3

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stems from missing password validation in WS-SecurityPolicy handling. The commit e4c6b3b adds critical checks in these two functions:

UsernameTokenInterceptor now verifies password presence for non-endorsing SupportingTokens
UsernameTokenPolicyValidator enforces password requirement through isNonEndorsingSupportingToken check These functions were vulnerable because they previously allowed authentication when UsernameToken elements lacked passwords in policy configurations requiring them, particularly in SupportingToken scenarios.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

*p**** *X* ***or* *.*.*, *.*.x ***or* *.*.*, *n* *.*.x ***or* *.*.*, w**n t** pl*int*xt Us*rn*m*Tok*n WS-S**urityPoli*y is *n**l**, *llows r*mot* *tt**k*rs to *yp*ss *ut**nti**tion vi* * s**urity *****r o* * SO*P r*qu*st *ont*inin* * Us*rn*m*Tok*n *l

Reasoning

T** vuln*r**ility st*ms *rom missin* p*sswor* v*li**tion in WS-S**urityPoli*y **n*lin*. T** *ommit ******* ***s *riti**l ****ks in t**s* two *un*tions: *. Us*rn*m*Tok*nInt*r**ptor now v*ri*i*s p*sswor* pr*s*n** *or non-*n*orsin* Supportin*Tok*ns *. U

5

Basic Information

Concerned about an active attack path?

CVE-2013-0239: Improper Authentication in Apache CXF

5

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI