MidnightBSD

Advisories for mod_auth_mellon_project

CVE-2019-13038 MEDIUM

mod_auth_mellon through 0.14.2 has an Open Redirect via the login?ReturnTo= substring, as demonstrated by omitting the // after http: in the target URL.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-601,

Products Affected

Vendor Product Version
canonical ubuntu_linux 18.04
fedoraproject fedora 30
oracle zfs_storage_appliance_kit 8.8
mod_auth_mellon_project mod_auth_mellon *
fedoraproject fedora 31
canonical ubuntu_linux 18.10
CVE-2019-3877 MEDIUM

A vulnerability was found in mod_auth_mellon before v0.14.2. An open redirect in the logout URL allows requests with backslashes to pass through by assuming that it is a relative URL, while the browsers silently convert backslash characters into forward slashes treating them as an absolute URL. This mismatch allows an attacker to bypass the redirect URL validation logic in apr_uri_parse function.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-601,CWE-601,

Products Affected

Vendor Product Version
canonical ubuntu_linux 18.04
redhat enterprise_linux 7.0
fedoraproject fedora 29
mod_auth_mellon_project mod_auth_mellon *
canonical ubuntu_linux 18.10
CVE-2019-3878 MEDIUM

A vulnerability was found in mod_auth_mellon before v0.14.2. If Apache is configured as a reverse proxy and mod_auth_mellon is configured to only let through authenticated users (with the require valid-user directive), adding special HTTP headers that are normally used to start the special SAML ECP (non-browser based) can be used to bypass authentication.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-305,CWE-287,

Products Affected

Vendor Product Version
redhat enterprise_linux_workstation 7.0
redhat enterprise_linux_server_eus 7.6
canonical ubuntu_linux 18.04
fedoraproject fedora 30
redhat enterprise_linux 7.0
redhat enterprise_linux_desktop 7.0
redhat enterprise_linux_server_aus 7.6
redhat enterprise_linux_server_tus 7.6
fedoraproject fedora 29
redhat enterprise_linux_server 7.0
mod_auth_mellon_project mod_auth_mellon *
canonical ubuntu_linux 18.10