Apache CXF: OAuth2: Inverted IP Binding Check Defeats Security Control

9.8 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

A logic error in OAuthRequestFilter rejects legitimate requests originating from the bound IP address, while blindly allowing requests from any other IP address. Enabling this

security feature inadvertently creates an inverse security check. Users are recommended to upgrade to versions 4.2.2 or 4.1.7, which fixes this issue.

AI Analysis

Logic error in OAuthRequestFilter allows unauthorized access

Basic Information

ID CVE-2026-50628

Source apache

Published Jun 12, 2026 at 08:56

Modified Jun 15, 2026 at 19:28

Affected Product

Vendor Apache Software Foundation

Product Apache CXF

Version 4.2.0

Affected Versions Apache Software Foundation Apache CXF 4.2.0
Apache Software Foundation Apache CXF 0

CWE Classification

CWE-20

AI Assessment

AI Score 9.8 / 10

AI Severity Critical

Vendor Apache Software Foundation

Product Apache CXF

Version 4.2.0, 4.1.7

References

lists.apache.org /thread/vb3ho8lf228gh90m1fpnohf2008xrdxk

{
    "lastseen": "",
    "description": "A logic error in OAuthRequestFilter rejects legitimate requests originating from the bound IP address, while blindly allowing requests from any other IP address. Enabling this\n\nsecurity feature inadvertently creates an inverse security check. Users are recommended to upgrade to versions 4.2.2 or 4.1.7, which fixes this issue.",
    "published": "2026-06-12T08:56:28.526Z",
    "modified": "2026-06-15T19:28:29.840Z",
    "type": "cve",
    "title": "Apache CXF: OAuth2: Inverted IP Binding Check Defeats Security Control",
    "source": "apache",
    "references": "https://lists.apache.org/thread/vb3ho8lf228gh90m1fpnohf2008xrdxk",
    "id": "CVE-2026-50628",
    "bulletinFamily": "",
    "cwe": [
        "CWE-20"
    ],
    "cvelist": null,
    "sourceData": "Apache Software Foundation Apache CXF 4.2.0\nApache Software Foundation Apache CXF 0",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Apache CXF",
    "version": "4.2.0",
    "vendor": "Apache Software Foundation",
    "ai_description": "Logic error in OAuthRequestFilter allows unauthorized access",
    "ai_severity": "Critical",
    "ai_vendor": "Apache Software Foundation",
    "ai_product": "Apache CXF",
    "ai_version": "4.2.0, 4.1.7",
    "ai_score": 9.8
}

Apache CXF: OAuth2: Inverted IP Binding Check Defeats Security Control_CVE-2026-50628