HTTP: Apache CloudStack SAML Authentication Bypass
This signature detects attempts to exploit a known vulnerability against Apache CloudStack. A successful attack can lead to security bypass.
Extended Description
The CloudStack SAML authentication (disabled by default) does not enforce signature check. In CloudStack environments where SAML authentication is enabled, an attacker that initiates CloudStack SAML single sign-on authentication can bypass SAML authentication by submitting a spoofed SAML response with no signature and known or guessed username and other user details of a SAML-enabled CloudStack user-account.In such environments, this can result in a complete compromise of the resources owned and/or accessible by a SAML enabled user-account. Affected users are recommended to disable the SAML authentication plugin by setting the"saml2.enabled" global setting to "false", or upgrade to version 4.18.2.2, 4.19.1.0 or later, which addresses this issue.
Affected Products
Apache cloudstack
References
CVE: CVE-2024-41107
Short Name
HTTP:CTS:APACHE-CLDSTC-AB
Severity
Major
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
Apache Authentication Bypass CVE-2024-41107 CloudStack SAML
Release Date
08/14/2024
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3783
False Positive
Unknown
Vendors
Apache