CVE-2019-3878
Description
A vulnerability was found in mod_auth_mellon before v0.14.2. If Apache is configured as a reverse proxy and mod_auth_mellon is configured to only let through authenticated users (with the require valid-user directive), adding special HTTP headers that are normally used to start the special SAML ECP (non-browser based) can be used to bypass authentication.
Risk Information
Base Score
8.1
MODERATE
Vector
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
2.334
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| libapache2-mod-auth-mellon security update(DSA-4414-1) libapache2-mod-auth-mellon_0.12.0-2+deb9u1_i386.deb | Linux |
| libapache2-mod-auth-mellon security update(DSA-4414-1) libapache2-mod-auth-mellon_0.12.0-2+deb9u1_amd64.deb | Linux |
| (RHSA-2019:0766) mod_auth_mellon security and bug fix update mod_auth_mellon-0.14.0-2.el7_6.4.x86_64.rpm | Linux |
| (RHSA-2019:0766) mod_auth_mellon security and bug fix update mod_auth_mellon-diagnostics-0.14.0-2.el7_6.4.x86_64.rpm | Linux |
| SAML 2.0 authentication module for Apache (USN-4597-1) libapache2-mod-auth-mellon_0.12.0-2+deb9u1build0.16.04.1_i386.deb | Linux |
| SAML 2.0 authentication module for Apache (USN-4597-1) libapache2-mod-auth-mellon_0.12.0-2+deb9u1build0.16.04.1_amd64.deb | Linux |
| Mod_auth_mellon update (ELSA-2019-0766) mod_auth_mellon-0.14.0-2.el7_6.4.x86_64.rpm | Linux |
| Mod_auth_mellon-diagnostics update (ELSA-2019-0766) mod_auth_mellon-diagnostics-0.14.0-2.el7_6.4.x86_64.rpm | Linux |
| Mod_auth_mellon update (ELSA-2019-0985) mod_auth_mellon-0.14.0-3.el8_0.2.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234