CVE-2010-2076
moderate-risk
Published 2010-08-19
Apache CXF 2.0.x before 2.0.13, 2.1.x before 2.1.10, and 2.2.x before 2.2.9, as used in Apache ServiceMix, Apache Camel, Apache Chemistry, Apache jUDDI, Apache Geronimo, and other products, does not properly reject DTDs in SOAP messages, which allows remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service (CPU and memory consumption) via a crafted DTD, as demonstrated by an entity declaration in a request to samples/wsdl_first_pure_xml, a similar issue to CVE-2010-1632.
Do I need to act?
!
12.0% chance of exploitation in next 30 days
EPSS score — higher than 88% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
9
CVSS 9.8/10
Critical
NETWORK
/ LOW complexity
Affected Products (1)
Affected Vendors
References (32)
Release Notes
http://geronimo.apache.org/21x-security-report.html
Release Notes
http://geronimo.apache.org/22x-security-report.html
Broken Link
http://secunia.com/advisories/40969
Broken Link
http://secunia.com/advisories/41016
Broken Link
http://secunia.com/advisories/41025
Broken Link
http://www.securityfocus.com/bid/42492
Third Party Advisory
https://issues.apache.org/jira/browse/GERONIMO-5383
Release Notes
http://geronimo.apache.org/21x-security-report.html
Release Notes
http://geronimo.apache.org/22x-security-report.html
Broken Link
http://secunia.com/advisories/40969
and 12 more references
49
/ 100
moderate-risk
Severity
32/34 · Critical
Exploitability
12/34 · Low
Exposure
5/34 · Minimal