CVE-2019-20437 Information

Description

An issue was discovered in WSO2 API Manager 2.6.0 WSO2 IS as Key Manager 5.7.0 and WSO2 Identity Server 5.8.0. When a custom claim dialect with an XSS payload is configured in the identity provider basic claim configuration that payload gets executed if a user picks up that dialect’s URI as the provisioning claim in the advanced claim configuration of the same Identity Provider. The attacker also needs to have privileges to log in to the management console and to add and update identity provider configurations.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Reference

https://cybersecurityworks.com/zerodays/cve-2019-20437-wso2.html https://docs.wso2.com/display/Security/Security+Advisory+WSO2-2019-0635 https://github.com/cybersecurityworks/Disclosed/issues/20

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

REQUIRED

Confidentiality Impact

CHANGED

Integrity Impact

LOW

Availability Impact

LOW

Base Score

NONE

Base Severity

6.1