Server-Side Request Forgery in Apache Batik
CVE-2019-17566

7.5HIGH

Key Information:

Vendor: Apache
Status: Apache Batik
Vendor: CVE Published:; 12 November 2020

Summary

Apache Batik is susceptible to a server-side request forgery (SSRF) vulnerability due to insufficient input validation in the 'xlink:href' attributes. This flaw allows attackers to send specially-crafted arguments that can manipulate the application into making unintended GET requests to arbitrary external locations, potentially leading to data exposure or administrative access.

Affected Version(s)

Apache Batik Apache Batik 1.12 and older

References

https://xmlgraphics.apache.org/security.html

https://lists.apache.org/thread.html/rab94fe68b180d2e2fba...

mailing-list

https://lists.apache.org/thread.html/rcab14a9ec91aa4c151e...

mailing-list

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 12, 2020
Vulnerability Reserved
Oct 14, 2019