CVE-2022-44729

Server-Side Request Forgery (SSRF) vulnerability in Apache Software Foundation Apache XML Graphics Batik.This issue affects Apache XML Graphics Batik: 1.16. On version 1.16, a malicious SVG could trigger loading external resources by default, causing resource consumption or in some cases even information disclosure. Users are recommended to upgrade to version 1.17 or later.

CVSS v3 7.1 HIGH

7.1^/10

CVSS v3 : HIGH

Vector :

Exploitability : 1.8 / Impact : 5.2

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
http://www.openwall.com/lists/oss-security/2023/08/22/2	Mailing List Third Party Advisory
http://www.openwall.com/lists/oss-security/2023/08/22/4	Mailing List Third Party Advisory
https://lists.apache.org/thread/hco2nw1typoorz33qzs0fcdx0ws6d6j2	Mailing List Vendor Advisory
https://lists.debian.org/debian-lts-announce/2023/10/msg00021.html	Mailing List
https://security.gentoo.org/glsa/202401-11
https://xmlgraphics.apache.org/security.html	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:apache:xml_graphics_batik:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2023-08-22 19:16

Updated : 2024-01-07 11:15

NVD link : CVE-2022-44729

Mitre link : CVE-2022-44729

CVE.ORG link : CVE-2022-44729

JSON object : View

Products Affected

debian

debian_linux

apache

xml_graphics_batik

CWE

CWE-918

Server-Side Request Forgery (SSRF)

{"id": "CVE-2022-44729", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.1, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.2, "exploitabilityScore": 1.8}]}, "published": "2023-08-22T19:16:29.833", "references": [{"url": "http://www.openwall.com/lists/oss-security/2023/08/22/2", "tags": ["Mailing List", "Third Party Advisory"], "source": "security@apache.org"}, {"url": "http://www.openwall.com/lists/oss-security/2023/08/22/4", "tags": ["Mailing List", "Third Party Advisory"], "source": "security@apache.org"}, {"url": "https://lists.apache.org/thread/hco2nw1typoorz33qzs0fcdx0ws6d6j2", "tags": ["Mailing List", "Vendor Advisory"], "source": "security@apache.org"}, {"url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00021.html", "tags": ["Mailing List"], "source": "security@apache.org"}, {"url": "https://security.gentoo.org/glsa/202401-11", "source": "security@apache.org"}, {"url": "https://xmlgraphics.apache.org/security.html", "tags": ["Vendor Advisory"], "source": "security@apache.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "security@apache.org", "description": [{"lang": "en", "value": "CWE-918"}]}], "descriptions": [{"lang": "en", "value": "Server-Side Request Forgery (SSRF) vulnerability in Apache Software Foundation Apache XML Graphics Batik.This issue affects Apache XML Graphics Batik: 1.16.\n\nOn version 1.16, a malicious SVG could trigger loading external resources by default, causing resource consumption or in some cases even information disclosure. Users are recommended to upgrade to version 1.17 or later.\n\n"}], "lastModified": "2024-01-07T11:15:10.567", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:apache:xml_graphics_batik:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F47BF012-F21F-4B92-ADE7-957E3FE338E0", "versionEndIncluding": "1.16", "versionStartIncluding": "1.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"}], "operator": "OR"}]}], "sourceIdentifier": "security@apache.org"}