Lucene search
K

31 matches found

EUVD
EUVD
added 2025/11/10 5:21 p.m.2 views

EUVD-2025-44730

Malicious code in vera-liwet98-sukiwir npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-44730

Malicious code in bioql PyPI...

7.8CVSS8.8AI score0.00214EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/23 7:1 a.m.6 views

CVE-2024-44730

Incorrect access control in the function handleDataChannelChatdataMessage of Mirotalk before commit c21d58 allows attackers to forge chat messages using an arbitrary sender name...

9.1CVSS7.1AI score0.0042EPSS
Exploits0References1
Amazon
Amazon
added 2025/03/25 12:0 a.m.3 views

Medium: batik

Issue Overview: Server-Side Request Forgery SSRF vulnerability in Apache Software Foundation Apache XML Graphics Batik.This issue affects Apache XML Graphics Batik: 1.16. On version 1.16, a malicious SVG could trigger loading external resources by default, causing resource consumption or in some...

7.1CVSS6.8AI score0.00786EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2022-44730

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Server-Side Request Forgery SSRF vulnerability in Apache Software Foundation Apache XML Graphics Batik.This issue affects Apache XML Graphics Batik: 1.16. A...

4.4CVSS6.7AI score0.00749EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.38 views

RHEL 7 : batik (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - batik: XML external entity processing vulnerability CVE-2017-5662 - batik: information disclosure when...

8.2AI score0.19523EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.36 views

RHEL 6 : batik (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - batik: XML external entity processing vulnerability CVE-2017-5662 - batik: information disclosure when...

8.2AI score0.19523EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2024/03/25 12:0 a.m.34 views

openSUSE Security Advisory (SUSE-SU-2024:0808-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.6AI score0.0232EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/03/08 12:0 a.m.32 views

SUSE SLED15: xmlgraphics-batik / xmlgraphics-batik-css / xmlgraphics-batik-demo / etc (SUSE-SU-2024:0808-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:0808-1 advisory. - CVE-2022-41704: Fixed information disclosure vulnerability in Apache Batik bsc1204704. -...

7.5CVSS6.8AI score0.0232EPSS
Exploits0References11
IBM Security Bulletins
IBM Security Bulletins
added 2024/01/17 8:11 p.m.28 views

Security Bulletin: There is a vulnerability in batik-all-1.15.jar used by IBM Maximo Manage application in IBM Maximo Application Suite (CVE-2022-44730 and CVE-2022-44729)

Summary There is a vulnerability in batik-all-1.15.jar used by IBM Maximo Manage application in IBM Maximo Application Suite. Vulnerability Details CVEID:CVE-2022-44730 DESCRIPTION: Apache Batik is vulnerable to server-side request forgery, caused by improper input validation. By persuading a...

7.1CVSS5.4AI score0.00786EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/01/09 12:0 a.m.53 views

GLSA-202401-11 : Apache Batik: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202401-11 Apache Batik: Multiple Vulnerabilities - In Apache Batik 1.x before 1.10, when deserializing subclass of AbstractDocument, the class takes a string from the inputStream as the class name which then use it to call the...

9.8CVSS7.2AI score0.19523EPSS
Exploits1References14
Tenable Nessus
Tenable Nessus
added 2023/10/14 12:0 a.m.31 views

Debian dla-3619 : libbatik-java - security update

The remote Debian 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-3619 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3619-1 [email protected]...

8.2CVSS6.8AI score0.13635EPSS
Exploits1References14
IBM Security Bulletins
IBM Security Bulletins
added 2023/10/02 4:54 p.m.30 views

Security Bulletin: The IBM App Connect Enterprise Toolkit and the IBM Integration Bus Toolkit are vulnerable to a server-side request forgery due to Apache Batik (CVE-2022-44730, CVE-2022-44729)

Summary The IBM App Connect Enterprise Toolkit and the IBM Integration Bus Toolkit are vulnerable to a server-side request forgery due to Apache Batik CVE-2022-44730, CVE-2022-44729. Vulnerability Details CVEID:CVE-2022-44730 DESCRIPTION: Apache Batik is vulnerable to server-side request forgery,...

7.1CVSS5.4AI score0.00786EPSS
Exploits0Affected Software2
vulnersOsv
vulnersOsv
added 2023/08/22 9:30 p.m.6 views

ai.tock:tock-shared (>=19.9.4 <=26.3.2), at.austriapro:ebinterface-rendering (>=1.0.0 <=1.0.1) +1503 more potentially affected by CVE-2022-44730 via org.apache.xmlgraphics:batik-script (>=1.10 <=1.16)

org.apache.xmlgraphics:batik-script MAVEN version =1.10, =19.9.4, =1.0.0, =1.0.7, =0.2.1, =0.5.0, =0.11.1, =0.0.2, =0.0.1, =0.0.1, =25.6.0, =25.12.0 and more Source cves: CVE-2022-44730 Source advisory: OSV:GHSA-2474-2566-3QXP...

4.4CVSS6.6AI score0.00749EPSS
Exploits0
NVD
NVD
added 2023/08/22 7:16 p.m.21 views

CVE-2022-44730

Server-Side Request Forgery SSRF vulnerability in Apache Software Foundation Apache XML Graphics Batik.This issue affects Apache XML Graphics Batik: 1.16. A malicious SVG can probe user profile / data and send it directly as parameter to a URL...

4.4CVSS5.7AI score0.00749EPSS
Exploits0References6
OSV
OSV
added 2023/08/22 7:16 p.m.11 views

CVE-2022-44730

Server-Side Request Forgery SSRF vulnerability in Apache Software Foundation Apache XML Graphics Batik.This issue affects Apache XML Graphics Batik: 1.16. A malicious SVG can probe user profile / data and send it directly as parameter to a URL...

4.4CVSS5.8AI score
Exploits0References6
UbuntuCve
UbuntuCve
added 2023/08/22 7:16 p.m.67 views

CVE-2022-44730

Server-Side Request Forgery SSRF vulnerability in Apache Software Foundation Apache XML Graphics Batik.This issue affects Apache XML Graphics Batik: 1.16. A malicious SVG can probe user profile / data and send it directly as parameter to a URL...

4.4CVSS6.8AI score0.00749EPSS
Exploits0References7
CVE
CVE
added 2023/08/22 1:57 p.m.130 views

CVE-2022-44730

CVE-2022-44730 is a Server-Side Request Forgery (SSRF) in Apache XML Graphics Batik (affected version: 1.16). A malicious SVG can probe user data and send it as a parameter to a URL; advisories (IBM bulletin, ALAS-2025-2801, Amazon Linux advisories) identify this alongside CVE-2022-44729 and reco...

4.4CVSS5.7AI score0.00749EPSS
Exploits0References6Affected Software1
ALT Linux
ALT Linux
added 2022/04/26 12:0 a.m.69 views

Security fix for the ALT Linux 10 package snapd version 2.54.3-alt1

2.54.3-alt1 built April 26, 2022 Andrey Cherepanov in task 299035 --- Feb. 20, 2022 Alexey Shabalin - 2.54.3 Fixes: CVE-2021-44730, CVE-2021-44731, CVE-2021-4120...

6.9CVSS3AI score0.00966EPSS
Exploits5
OSV
OSV
added 2022/02/24 1:23 p.m.13 views

USN-5292-4 snapd regression

USN-5292-1 fixed a vulnerability in snapd. Unfortunately that update introduced a regression that could break the fish shell. This update fixes the problem. We apologize for the inconvenience. Original advisory details: James Troup discovered that snap did not properly manage the permissions for...

6.1AI score
Exploits0References3
Rows per page
Query Builder