CVE-2022-35741

CWE-611XML External Entity (XXE)3 documents3 sources
Severity
9.8CRITICAL
EPSS
34.4%
top 3.01%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Apache Software Foundation Apache CloudstackApache Cloudstack
Timeline
PublishedJul 18
Latest updateJul 19

Description

Apache CloudStack version 4.5.0 and later has a SAML 2.0 authentication Service Provider plugin which is found to be vulnerable to XML external entity (XXE) injection. This plugin is not enabled by default and the attacker would require that this plugin be enabled to exploit the vulnerability. When the SAML 2.0 plugin is enabled in affected versions of Apache CloudStack could potentially allow the exploitation of XXE vulnerabilities. The SAML 2.0 messages constructed during the authentication fl

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

CVEListV5apache_software_foundation/apache_cloudstack4.5.0Apache CloudStack*
NVDapache/cloudstack4.5.04.16.1.1+1

Patches

Patch: lists.apache.orgPatch: lists.apache.org

🔴Vulnerability Details

2
GHSA
GHSA-r3xj-vjpq-7cvq: Apache CloudStack version 42022-07-19
CVEList
Apache CloudStack SAML Single Sign-On XXE2022-07-18
CVE-2022-35741 (CRITICAL CVSS 9.8) | Apache CloudStack version 4.5.0 and | cvebase.io