CVE-2022-38398

Server-Side Request Forgery (SSRF) in maven/org.apache.xmlgraphics/batik-rasterizer

Identifiers

CVE-2022-38398

Package Slug

maven/org.apache.xmlgraphics/batik-rasterizer

Vulnerability

Server-Side Request Forgery (SSRF)

Description

Server-Side Request Forgery (SSRF) vulnerability in Batik of Apache XML Graphics allows an attacker to load a url thru the jar protocol. This issue affects Apache XML Graphics Batik 1.14.

Affected Versions

Version 1.14

Solution

Upgrade to version 1.15 or above.

Last Modified

2022-09-27

source