Last Update: May 29, 2021
Vulnerabilitiy has been fixed in Hitachi ID Bravura Security Fabric.
CVE-2021-3196: XML Signature Wrapping Attack (XSW) issue
When using federated identity management (authenticating via SAML through a third-party identity provider), an attacker injects additional data into a signed SAML response being transmitted to the service provider (Hitachi ID Bravura Security Fabric). The application successfully validates the signed values but uses the unsigned malicious values. An attacker with lower-privilege access to the application can inject the username of a high-privilege user to impersonate that user.
Escalation of Privileges: Attackers can impersonate another user, including higher privilege levels.
Users and administrators are encouraged to upgrade to fixed version.
Masato Terada (HIRT), Naoko Ohnishi (HIRT) and Michael Ellis (Hitachi Vantara)