CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux – Vulnerability in Batik

A Server-Side Request Forgery SSRF vulnerability exists in Batik of Apache XML Graphics, allowing an attacker to load a URL through the jar protocol. This issue affects Apache XML Graphics Batik 1.14...

5.3CVSS6.6AI score0.02142EPSS

Exploits0References1

OSV•added 2024/06/15 12:0 a.m.•13 views

OPENSUSE-SU-2024:11522-1 xmlgraphics-batik-1.14-2.5 on GA media

These are all security issues fixed in the xmlgraphics-batik-1.14-2.5 package on the GA media of openSUSE Tumbleweed...

7.5CVSS8.6AI score0.1074EPSS

Exploits0References1

Atlassian•added 2024/02/14 10:47 a.m.•59 views

SSRF (Server-Side Request Forgery) org.apache.xmlgraphics:batik-bridge Dependency in Jira Software Data Center and Server

This High severity org.apache.xmlgraphics:batik-bridge Dependency vulnerability was introduced in versions 8.20.0, 8.22.0, 9.0.0, 9.1.0, 9.2.0, 9.3.0, 9.4.0, 9.5.0, and 9.6.0 of Jira Software Data Center and Server. This org.apache.xmlgraphics:batik-bridge Dependency vulnerability, with a CVSS...

7.5CVSS7.2AI score0.06147EPSS

Exploits1

RedHat Linux•added 2023/06/29 8:7 p.m.•3 views

batik: Server-Side Request Forgery

Server-Side Request Forgery SSRF vulnerability in Batik of Apache XML Graphics allows an attacker to load a url thru the jar protocol. This issue affects Apache XML Graphics Batik 1.14...

5.3CVSS7.3AI score0.02142EPSS

Exploits0References7

RedHat Linux•added 2023/06/29 8:7 p.m.•5 views

batik: Server-Side Request Forgery (SSRF) vulnerability

Server-Side Request Forgery SSRF vulnerability in Batik of Apache XML Graphics allows an attacker to access files using a Jar url. This issue affects Apache XML Graphics Batik 1.14...

7.5CVSS7.3AI score0.06147EPSS

Exploits1References7

SUSE CVE•added 2023/02/15 3:23 a.m.•2 views

SUSE CVE-2022-40146

Server-Side Request Forgery SSRF vulnerability in Batik of Apache XML Graphics allows an attacker to access files using a Jar url. This issue affects Apache XML Graphics Batik 1.14...

5.3CVSS8.8AI score0.06147EPSS

Exploits1References8

Prion•added 2022/09/22 3:15 p.m.•20 views

Server side request forgery (ssrf)

Server-Side Request Forgery SSRF vulnerability in Batik of Apache XML Graphics allows an attacker to access files using a Jar url. This issue affects Apache XML Graphics Batik 1.14...

5CVSS7.3AI score0.06147EPSS

Exploits1References3Affected Software2

OSV•added 2022/09/22 3:15 p.m.•0 views

UBUNTU-CVE-2022-38398

Server-Side Request Forgery SSRF vulnerability in Batik of Apache XML Graphics allows an attacker to load a url thru the jar protocol. This issue affects Apache XML Graphics Batik 1.14...

5.3CVSS7.1AI score0.02142EPSS

Exploits0References4

OSV•added 2022/09/22 3:15 p.m.•0 views

UBUNTU-CVE-2022-40146

Server-Side Request Forgery SSRF vulnerability in Batik of Apache XML Graphics allows an attacker to access files using a Jar url. This issue affects Apache XML Graphics Batik 1.14...

7.5CVSS7.1AI score0.06147EPSS

Exploits1References4

Cvelist•added 2022/09/22 12:0 a.m.•21 views

CVE-2022-40146 Jar url should be blocked by DefaultScriptSecurity

Server-Side Request Forgery SSRF vulnerability in Batik of Apache XML Graphics allows an attacker to access files using a Jar url. This issue affects Apache XML Graphics Batik 1.14...

7.9AI score0.06147EPSS

Exploits1References3

CVE•added 2022/09/22 12:0 a.m.•209 views

CVE-2022-40146

CVE-2022-40146 is a Server-Side Request Forgery in Apache XML Graphics Batik (version 1.14) that allows an attacker to access files via a Jar URL. Multiple connected advisories confirm the vulnerability and urge upgrading Batik to patched versions; Debian and Gentoo advisories show Batik updates ...

7.5CVSS7.4AI score0.06147EPSS

Exploits1References4Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by