CVE-2019-17566

high-risk

Published 2020-11-12

Apache Batik is vulnerable to server-side request forgery, caused by improper input validation by the "xlink:href" attributes. By using a specially-crafted argument, an attacker could exploit this vulnerability to cause the underlying server to make arbitrary GET requests.

Do I need to act?

0.81% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.5/10 High

NETWORK / LOW complexity

Affected Products (20)

Batik

Api Gateway

Business Intelligence

Communications Application Session Controller

Communications Metasolv Solution

Communications Offline Mediation Controller

Enterprise Repository

Financial Services Analytical Applications Infrastructure

Fusion Middleware Mapviewer

Hospitality Opera 5

Hyperion Financial Reporting

Instantis Enterprisetrack

Jd Edwards Enterpriseone Tools

Retail Integration Bus

Affected Vendors

Apache Oracle

References (20)

https://lists.apache.org/thread.html/rab94fe68b180d2e2fba97abf6fe1ec83cff826be25...

https://lists.apache.org/thread.html/rcab14a9ec91aa4c151e0729966282920423eff50a2...

https://security.gentoo.org/glsa/202401-11

Patch https://www.oracle.com//security-alerts/cpujul2021.html

Patch https://www.oracle.com/security-alerts/cpuApr2021.html

Patch https://www.oracle.com/security-alerts/cpujan2021.html

Patch https://www.oracle.com/security-alerts/cpujan2022.html

Patch https://www.oracle.com/security-alerts/cpujul2022.html

Patch https://www.oracle.com/security-alerts/cpuoct2021.html

Vendor Advisory https://xmlgraphics.apache.org/security.html