CVE Details
Basic Information
| Title | Dromara MaxKey Meta URL SAML20DetailsController.java add server-side request forgery |
|---|---|
| Type | cve |
| Published | 2025-06-23T18:00:15.580Z |
| Last Seen |
Product Information
| Vendor | Dromara |
|---|---|
| Product | MaxKey |
| Version | 4.1.0 |
CVSS Information
| Base Score | 5.3 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P |
| Confidentiality Impact | |
| Integrity Impact | |
| Availability Impact |
AI Analysis
| AI Description | A server-side request forgery vulnerability in Dromara MaxKey versions up to 4.1.7 allows remote attackers to manipulate the ‘post’ argument in the SAML20DetailsController, potentially leading to unauthorized requests. This issue is rated critical and has been publicly disclosed without a vendor response. |
|---|---|
| AI Severity | Medium |
| Vendor | Dromara |
| Product | MaxKey |
| Affected Version | 4.1.0, 4.1.1, 4.1.2, 4.1.3, 4.1.4, 4.1.5, 4.1.6, 4.1.7 |
Affected Products
- Dromara MaxKey 4.1.0
- Dromara MaxKey 4.1.1
- Dromara MaxKey 4.1.2
- Dromara MaxKey 4.1.3
- Dromara MaxKey 4.1.4
- Dromara MaxKey 4.1.5
- Dromara MaxKey 4.1.6
- Dromara MaxKey 4.1.7
Additional Information
| CVE List | |
|---|---|
| CWE List | CWE-918 |
| Bulletin Family |
References
Description
A vulnerability was found in Dromara MaxKey up to 4.1.7 and classified as critical. This issue affects the function Add of the file maxkey-webs\maxkey-web-mgt\src\main\java\org\dromara\maxkey\web\apps\contorller\SAML20DetailsController.java of the component Meta URL Handler. The manipulation of the argument post leads to server-side request forgery. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.