4.8 CVE-2024-1248

Enriched by CISA
 

The silent Just-In-Time (JIT) provisioning feature in federated authentication implementations fails to properly segregate user roles during account creation when a federated user shares a username with a local user. This allows the provisioning process to overwrite existing roles of local users with roles assigned to the federated user. Exploitation requires a federated identity provider (IDP) with silent JIT provisioning enabled and an attacker's knowledge of a local user's username. When these conditions are met, a malicious individual can leverage the JIT provisioning process to modify the roles of local users. The overwritten roles are limited to those defined within the federated IDP, typically granting minimal access rights unless explicitly configured otherwise by the federated IDP administrator.
https://nvd.nist.gov/vuln/detail/CVE-2024-1248

Categories

CWE-298 : Improper Validation of Certificate Expiration
A certificate expiration is not validated or is incorrectly validated. Check for expired certificates and provide the user with adequate information about the nature of the problem and how to proceed. If certificate pinning is being used, ensure that all relevant properties of the certificate are fully validated before the certificate is pinned, including the expiration. product does not verify that a certificate has expired web library product does not verify that a certificate has expired IRC product does not check the expiration date of the X.509 certificate library for SSL and TLS does not check the activation or expiration dates of CA certificates

References


 

AFFECTED (from MITRE)


Vendor Product Versions
WSO2 WSO2 API Manager
  • < 3.0.0 [unknown]
  • 3.0.0 < 3.0.0.153 [affected]
  • 3.1.0 < 3.1.0.267 [affected]
  • 3.2.0 < 3.2.0.351 [affected]
  • 4.0.0 < 4.0.0.269 [affected]
  • 4.1.0 < 4.1.0.169 [affected]
WSO2 WSO2 Identity Server
  • < 5.8.0 [unknown]
  • 5.8.0 < 5.8.0.101 [affected]
  • 5.9.0 < 5.9.0.138 [affected]
  • 5.10.0 < 5.10.0.284 [affected]
  • 5.11.0 < 5.11.0.321 [affected]
WSO2 WSO2 Identity Server as Key Manager
  • < 5.9.0 [unknown]
  • 5.9.0 < 5.9.0.148 [affected]
  • 5.10.0 < 5.10.0.280 [affected]
WSO2 WSO2 Open Banking AM
  • < 2.0.0 [unknown]
  • 2.0.0 < 2.0.0.313 [affected]
WSO2 WSO2 Open Banking IAM
  • < 2.0.0 [unknown]
  • 2.0.0 < 2.0.0.333 [affected]
© 2022 The MITRE Corporation. This work is reproduced and distributed with the permission of The MITRE Corporation.

CPE

cpe start end


REMEDIATION




EXPLOITS


Exploit-db.com

id description date
No known exploits

POC Github

Url
No known exploits

Other Nist (github, ...)

Url
No known exploits


CAPEC


Common Attack Pattern Enumerations and Classifications

id description severity
No entry