CVE-2024-29736 Apache CXF: SSRF vulnerability via WADL stylesheet parameter

2024-07-1908:50:08

CWE-918

apache

github.com

cve-2024-29736

apache cxf

ssrf vulnerability

wadl stylesheet parameter

rest webservices

AI Score

9.1

Confidence

High

EPSS

0.002

Percentile

53.3%

SSVC

Exploitation

none

Automatable

yes

Technical Impact

partial

JSON

A SSRF vulnerability in WADL service description in versions of Apache CXF before 4.0.5, 3.6.4 and 3.5.9 allows an attacker to perform SSRF style attacks on REST webservices. The attack only applies if a custom stylesheet parameter is configured.

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:a:apache:cxf:*:*:*:*:*:*:*:*"
    ],
    "vendor": "apache",
    "product": "cxf",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "3.5.9",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "0",
        "lessThan": "3.6.4",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "0",
        "lessThan": "4.0.5",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  }
]