CVE-2022-38648

Server-Side Request Forgery (SSRF) in maven/org.apache.xmlgraphics/batik-svgbrowser

Identifiers

CVE-2022-38648

Package Slug

maven/org.apache.xmlgraphics/batik-svgbrowser

Vulnerability

Server-Side Request Forgery (SSRF)

Description

Server-Side Request Forgery (SSRF) vulnerability in Batik of Apache XML Graphics allows an attacker to fetch external resources. This issue affects Apache XML Graphics Batik 1.14.

Affected Versions

Version 1.14

Solution

Upgrade to version 1.15 or above.

Last Modified

2022-09-27

source