Apache CXF: Untrusted JMS configuration can lead to RCE

9.8 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

If untrusted users are allowed to configure JMS for Apache CXF, previously they could use RMI or LDAP URLs, potentially leading to code execution capabilities. This interface is now restricted to reject those protocols, removing this possibility.

Users are recommended to upgrade to versions 3.6.8, 4.0.9 or 4.1.3, which fix this issue.

Basic Information

ID CVE-2025-48913

Source apache

Published Aug 8, 2025 at 09:21

Modified Aug 8, 2025 at 13:42

Affected Product

Vendor Apache Software Foundation

Product Apache CXF

Version 4.1.0

Affected Versions Apache Software Foundation Apache CXF 4.1.0
Apache Software Foundation Apache CXF 4.0.0
Apache Software Foundation Apache CXF 0

CWE Classification

CWE-20

References

lists.apache.org /thread/f1nv488ztc0js4g5ml2v88mzkzslyh83

{
    "lastseen": "",
    "description": "If untrusted users are allowed to configure JMS for Apache CXF, previously they could use RMI or LDAP URLs, potentially leading to code execution capabilities.  This interface is now restricted to reject those protocols, removing this possibility.\n\nUsers are recommended to upgrade to versions 3.6.8, 4.0.9 or 4.1.3, which fix this issue.",
    "published": "2025-08-08T09:21:22.208Z",
    "modified": "2025-08-08T13:42:37.930Z",
    "type": "cve",
    "title": "Apache CXF: Untrusted JMS configuration can lead to RCE",
    "source": "apache",
    "references": "https://lists.apache.org/thread/f1nv488ztc0js4g5ml2v88mzkzslyh83",
    "id": "CVE-2025-48913",
    "bulletinFamily": "",
    "cwe": [
        "CWE-20"
    ],
    "cvelist": null,
    "sourceData": "Apache Software Foundation Apache CXF 4.1.0\nApache Software Foundation Apache CXF 4.0.0\nApache Software Foundation Apache CXF 0",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Apache CXF",
    "version": "4.1.0",
    "vendor": "Apache Software Foundation",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Apache CXF: Untrusted JMS configuration can lead to RCE_CVE-2025-48913