CVE-2020-11988

Description

Apache XmlGraphics Commons 2.4 and earlier is vulnerable to server-side request forgery, caused by improper input validation by the XMPParser. By using a specially-crafted argument, an attacker could exploit this vulnerability to cause the underlying server to make arbitrary GET requests. Users should upgrade to 2.6 or later.

Affected Software
References

Software	From	Fixed in
fedoraproject / fedora	33	33.x
fedoraproject / fedora	34	34.x
apache / xmlgraphics_commons	-	2.4.x
org.apache.xmlgraphics / xmlgraphics-commons	-	2.6

https://github.com/apache/xmlgraphics-commons/commit/57393912eb87b994c7fed39ddf30fb778a275183
https://issues.apache.org/jira/browse/XGC-122
https://lists.apache.org/thread.html/r2877ae10e8be56a3c52d03e373512ddd32f16b863f24c2e22f5a5ba2@%3Cdev.poi.apache.org%3E
https://lists.apache.org/thread.html/r2877ae10e8be56a3c52d03e373512ddd32f16b863f24c2e22f5a5ba2%40%3Cdev.poi.apache.org%3E
https://lists.apache.org/thread.html/r588d05a0790b40a0eb81088252e1e8c1efb99706631421f17038eb05@%3Cdev.poi.apache.org%3E
https://lists.apache.org/thread.html/r588d05a0790b40a0eb81088252e1e8c1efb99706631421f17038eb05%40%3Cdev.poi.apache.org%3E
https://lists.apache.org/thread.html/ra8f4d6ae402ec020ee3e8c28632c91be131c4d8b4c9c6756a179b12b@%3Cdev.jmeter.apache.org%3E
https://lists.apache.org/thread.html/ra8f4d6ae402ec020ee3e8c28632c91be131c4d8b4c9c6756a179b12b%40%3Cdev.jmeter.apache.org%3E
https://lists.fedoraproject.org/archives/list/[email protected]/message/22HESSYU7T4D6GGENUVEX3X3H6FGBECH/
https://lists.fedoraproject.org/archives/list/[email protected]/message/JP4XA56DA3BFNRBBLBXM6ZAI5RUVFA33/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/22HESSYU7T4D6GGENUVEX3X3H6FGBECH/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JP4XA56DA3BFNRBBLBXM6ZAI5RUVFA33/
https://www.oracle.com//security-alerts/cpujul2021.html
https://www.oracle.com/security-alerts/cpuoct2021.html
https://xmlgraphics.apache.org/security.html

Severity: High

CVE: CVE-2020-11988
GHSA: GHSA-fmj2-7wx8-qj4v
Published: Feb 24, 2021
Updated: Nov 8, 2023
Exploit:

Severity: High
Score: 8.2
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

Severity: Medium
Score: 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:N

CWE-20
CWE-918

CVE-2020-11988

Description

Details

CVSS v3

CVSS v2

CWEs