CVE-2017-5661 — Vulnetix

Try Vulnetix Request Demo

CVE-2017-5661 PUBLISHED

In Apache FOP before 2.2, files lying on the filesystem of the server which uses FOP can be revealed to arbitrary users who send maliciously formed SVG files. The file types that can be shown depend on the user context in which the exploitable application is running. If the user is root a full compromise of the server - including confidential or sensitive files - would be possible. XXE can also be used to attack the availability of the server via denial of service as the references within a xml document can trivially trigger an amplification attack.

EPSS 2.45% · 85.1th percentile

Risk Scores

EPSS Score

2.45%

85.1th percentile

Affected Products

Vendor	Product	Versions
Ubuntu:16.04:LTS	fop	0, 1:1.1.dfsg2-1ubuntu1, *
Ubuntu:14.04:LTS	fop	0, 1:1.1.dfsg-2ubuntu1

Timeline

Apr 18, 2017 CVE Published
Apr 19, 2017 PoC Published
Nov 3, 2017 CVE Updated
Apr 14, 2021 EPSS Score
Jun 28, 2021 PoC Published
Jul 23, 2021 EPSS Score
Mar 7, 2023 EPSS Score
Oct 21, 2023 PoC Published
May 22, 2024 PoC Published
Mar 17, 2025 EPSS Score
Mar 19, 2025 PoC Published
Mar 21, 2025 EPSS Score

References

https://ubuntu.com/security/CVE-2017-5661 third-party-advisory
http://www.openwall.com/lists/oss-security/2017/04/18/2 third-party-advisory
https://ubuntu.com/security/notices/USN-3281-1 vendor-advisory
https://www.cve.org/CVERecord?id=CVE-2017-5661 third-party-advisory

Open in Interactive Console →