4.8 CVE-2024-1248
The silent Just-In-Time (JIT) provisioning feature in federated authentication implementations fails to properly segregate user roles during account creation when a federated user shares a username with a local user. This allows the provisioning process to overwrite existing roles of local users with roles assigned to the federated user.
Exploitation requires a federated identity provider (IDP) with silent JIT provisioning enabled and an attacker's knowledge of a local user's username. When these conditions are met, a malicious individual can leverage the JIT provisioning process to modify the roles of local users. The overwritten roles are limited to those defined within the federated IDP, typically granting minimal access rights unless explicitly configured otherwise by the federated IDP administrator.
https://nvd.nist.gov/vuln/detail/CVE-2024-1248
Categories
CWE-298 : Improper Validation of Certificate Expiration
A certificate expiration is not validated or is incorrectly validated. Check for expired certificates and provide the user with adequate information about the nature of the problem and how to proceed. If certificate pinning is being used, ensure that all relevant properties of the certificate are fully validated before the certificate is pinned, including the expiration. product does not verify that a certificate has expired web library product does not verify that a certificate has expired IRC product does not check the expiration date of the X.509 certificate library for SSL and TLS does not check the activation or expiration dates of CA certificates
References
ed10eef1-636d-4fbe-9993-6890dfa878f8
AFFECTED (from MITRE)
| Vendor |
Product |
Versions |
| WSO2 |
WSO2 API Manager |
- < 3.0.0 [unknown]
- 3.0.0 < 3.0.0.153 [affected]
- 3.1.0 < 3.1.0.267 [affected]
- 3.2.0 < 3.2.0.351 [affected]
- 4.0.0 < 4.0.0.269 [affected]
- 4.1.0 < 4.1.0.169 [affected]
|
| WSO2 |
WSO2 Identity Server |
- < 5.8.0 [unknown]
- 5.8.0 < 5.8.0.101 [affected]
- 5.9.0 < 5.9.0.138 [affected]
- 5.10.0 < 5.10.0.284 [affected]
- 5.11.0 < 5.11.0.321 [affected]
|
| WSO2 |
WSO2 Identity Server as Key Manager |
- < 5.9.0 [unknown]
- 5.9.0 < 5.9.0.148 [affected]
- 5.10.0 < 5.10.0.280 [affected]
|
| WSO2 |
WSO2 Open Banking AM |
- < 2.0.0 [unknown]
- 2.0.0 < 2.0.0.313 [affected]
|
| WSO2 |
WSO2 Open Banking IAM |
- < 2.0.0 [unknown]
- 2.0.0 < 2.0.0.333 [affected]
|
| © 2022 The MITRE Corporation. This work is reproduced and distributed with the permission of The MITRE Corporation. |
CPE
REMEDIATION
EXPLOITS
Exploit-db.com
| id |
description |
date |
|
| No known exploits |
POC Github
Other Nist (github, ...)
CAPEC
Common Attack Pattern Enumerations and Classifications
| id |
description |
severity |
| No entry |
Cybersecurity needs ?
Strengthen software security from the outset with our DevSecOps expertise
Integrate security right from the start of the software development cycle for more robust applications and greater customer confidence.
Our team of DevSecOps experts can help you secure your APIs, data pipelines, CI/CD chains, Docker containers and Kubernetes deployments.
Discover this offer