VDB

CVE-2016-6812

CVE-2016-6812 PUBLISHED CVSS 6.099999904632568 MEDIUM

Reported by apache · Published August 10, 2017

The HTTP transport module in Apache CXF prior to 3.0.12 and 3.1.x prior to 3.1.9 uses FormattedServiceListWriter to provide an HTML page which lists the names and absolute URL addresses of the available service endpoints. The module calculates the base URL using the current HttpServletRequest. The calculated base URL is used by FormattedServiceListWriter to build the service endpoint absolute URLs. If the unexpected matrix parameters have been injected into the request URL then these matrix parameters will find their way back to the client in the services list page which represents an XSS risk to the client.

Risk Scores

CVSS 3.0
6.099999904632568
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Affected Products

VendorProductVersions
Apache Software FoundationApache CXFprior to 3.0.12, 3.1.x prior to 3.1.9
Apache Software FoundationApache CXFprior to 3.0.12, 3.1.x prior to 3.1.9, prior to 3.0.12
Mavenorg.apache.cxf:cxf-rt-transports-http0, 0, 0
Mavenorg.apache.cxf:cxf-core0, 0, 0

Timeline

  • Aug 10, 2017 CVE Published
  • Feb 4, 2022 EPSS Score
  • Mar 29, 2022 EPSS Score
  • May 20, 2022 EPSS Score
  • Jul 12, 2022 EPSS Score
  • Oct 26, 2022 EPSS Score
  • Dec 18, 2022 EPSS Score
  • Feb 8, 2023 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Apr 2, 2023 EPSS Score
  • May 25, 2023 EPSS Score
  • Jul 16, 2023 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›