{"dataType": "CVE_RECORD", "dataVersion": "5.0", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2022-41704", "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09", "assignerShortName": "apache", "dateUpdated": "2024-01-07T11:06:25.134503", "dateReserved": "2022-09-28T00:00:00", "datePublished": "2022-10-25T00:00:00"}, "containers": {"cna": {"title": "Apache Batik prior to 1.16 allows RCE when loading untrusted SVG input", "providerMetadata": {"orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09", "shortName": "apache", "dateUpdated": "2024-01-07T11:06:25.134503"}, "descriptions": [{"lang": "en", "value": "A vulnerability in Batik of Apache XML Graphics allows an attacker to run untrusted Java code from an SVG. This issue affects Apache XML Graphics prior to 1.16. It is recommended to update to version 1.16."}], "affected": [{"vendor": "Apache Software Foundation", "product": "Apache XML Graphics", "versions": [{"version": "Batik", "status": "affected", "lessThanOrEqual": "1.15", "versionType": "custom"}]}], "references": [{"url": "https://lists.apache.org/thread/hplhx0o74jb7blj39fm4kw3otcnjd6xf"}, {"name": "[oss-security] 20221025 [CVE-2022-41704] Apache Batik information disclosure vulnerability", "tags": ["mailing-list"], "url": "http://www.openwall.com/lists/oss-security/2022/10/25/2"}, {"name": "[debian-lts-announce] 20221029 [SECURITY] [DLA 3169-1] batik security update", "tags": ["mailing-list"], "url": "https://lists.debian.org/debian-lts-announce/2022/10/msg00038.html"}, {"name": "DSA-5264", "tags": ["vendor-advisory"], "url": "https://www.debian.org/security/2022/dsa-5264"}, {"name": "GLSA-202401-11", "tags": ["vendor-advisory"], "url": "https://security.gentoo.org/glsa/202401-11"}], "credits": [{"lang": "en", "value": "This issue was independently reported by 4ra1n of Chaitin Tech and pwnull"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "A jar file can be loaded from svg script element"}]}], "x_generator": {"engine": "Vulnogram 0.0.9"}, "source": {"discovery": "UNKNOWN"}}}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:apache:batik:*:*:*:*:*:*:*:*", "matchCriteriaId": "7B523AA6-B97C-45DD-9BFD-BDFC34C1AD1C", "versionEndExcluding": "1.16", "versionStartIncluding": "1.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73", "vulnerable": true}, {"criteria": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*", "matchCriteriaId": "FA6FEEC2-9F11-4643-8827-749718254FED", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability in Batik of Apache XML Graphics allows an attacker to run untrusted Java code from an SVG. This issue affects Apache XML Graphics prior to 1.16. It is recommended to update to version 1.16."}, {"lang": "es", "value": "Una vulnerabilidad en Batik de Apache XML Graphics permite a un atacante ejecutar c\u00f3digo Java no confiable desde un SVG. Este problema afecta a Apache XML Graphics versiones anteriores a 1.16. Es recomendado actualizar a versi\u00f3n 1.16"}], "id": "CVE-2022-41704", "lastModified": "2024-01-07T11:15:10.407", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-10-25T17:15:57.527", "references": [{"source": "security@apache.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2022/10/25/2"}, {"source": "security@apache.org", "tags": ["Vendor Advisory"], "url": "https://lists.apache.org/thread/hplhx0o74jb7blj39fm4kw3otcnjd6xf"}, {"source": "security@apache.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://lists.debian.org/debian-lts-announce/2022/10/msg00038.html"}, {"source": "security@apache.org", "url": "https://security.gentoo.org/glsa/202401-11"}, {"source": "security@apache.org", "tags": ["Third Party Advisory"], "url": "https://www.debian.org/security/2022/dsa-5264"}], "sourceIdentifier": "security@apache.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-918"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}