exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 6

CVE-2020-11987

почти 5 лет назад

Apache Batik 1.13 is vulnerable to server-side request forgery, caused by improper input validation by the NodePickerPanel. By using a specially-crafted argument, an attacker could exploit this vulnerability to cause the underlying server to make arbitrary GET requests.

CVSS3: 8.2

EPSS: Низкий

CVE-2020-11987

почти 5 лет назад

Apache Batik 1.13 is vulnerable to server-side request forgery, caused by improper input validation by the NodePickerPanel. By using a specially-crafted argument, an attacker could exploit this vulnerability to cause the underlying server to make arbitrary GET requests.

CVSS3: 8.2

EPSS: Низкий

CVE-2020-11987

почти 5 лет назад

Apache Batik 1.13 is vulnerable to server-side request forgery, caused by improper input validation by the NodePickerPanel. By using a specially-crafted argument, an attacker could exploit this vulnerability to cause the underlying server to make arbitrary GET requests.

CVSS3: 8.2

EPSS: Низкий

CVE-2020-11987

почти 5 лет назад

Apache Batik 1.13 is vulnerable to server-side request forgery, caused ...

CVSS3: 8.2

EPSS: Низкий

GHSA-2h63-qp69-fwvw

около 4 лет назад

Server-side request forgery (SSRF) in Apache Batik

CVSS3: 8.2

EPSS: Низкий

SUSE-SU-2024:0777-1

почти 2 года назад

Security update for xmlgraphics-batik

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2020-11987 Apache Batik 1.13 is vulnerable to server-side request forgery, caused by improper input validation by the NodePickerPanel. By using a specially-crafted argument, an attacker could exploit this vulnerability to cause the underlying server to make arbitrary GET requests.	CVSS3: 8.2	1% Низкий	почти 5 лет назад
CVE-2020-11987 Apache Batik 1.13 is vulnerable to server-side request forgery, caused by improper input validation by the NodePickerPanel. By using a specially-crafted argument, an attacker could exploit this vulnerability to cause the underlying server to make arbitrary GET requests.	CVSS3: 8.2	1% Низкий	почти 5 лет назад
CVE-2020-11987 Apache Batik 1.13 is vulnerable to server-side request forgery, caused by improper input validation by the NodePickerPanel. By using a specially-crafted argument, an attacker could exploit this vulnerability to cause the underlying server to make arbitrary GET requests.	CVSS3: 8.2	1% Низкий	почти 5 лет назад
CVE-2020-11987 Apache Batik 1.13 is vulnerable to server-side request forgery, caused ...	CVSS3: 8.2	1% Низкий	почти 5 лет назад
GHSA-2h63-qp69-fwvw Server-side request forgery (SSRF) in Apache Batik	CVSS3: 8.2	1% Низкий	около 4 лет назад
SUSE-SU-2024:0777-1 Security update for xmlgraphics-batik			почти 2 года назад

Уязвимостей на страницу