pkg:maven/org.apache.xmlgraphics/batik
Type
maven
Namespace
org.apache.xmlgraphics
Name
batik
Known advisories, vulnerabilities and fixes for org.apache.xmlgraphics/batik package.
Critical
1
High
5
Moderate
3
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | >= 1.0, <= 1.9.1 |
CVE-2018-8013
|
 MAVEN:GHSA-25GW-4PCC-45CF
|
Deserialization of Untrusted Data in Apache Batik | critical |
2022-05-13T01:14:24
(2 years ago) |
|
| Fixed | = 1.10 |
CVE-2018-8013
|
MAVEN:GHSA-25GW-4PCC-45CF
|
Deserialization of Untrusted Data in Apache Batik | critical |
2022-05-13T01:14:24
(2 years ago) |
|
| Affected | >= 1.0, < 1.15 |
CVE-2022-38648
|
MAVEN:GHSA-53JM-3HC9-FQQC
|
Apache Batik vulnerable to Server-Side Request Forgery | moderate |
2022-09-23T00:00:40
(2 years ago) |
|
| Fixed | = 1.15 |
CVE-2022-38648
|
MAVEN:GHSA-53JM-3HC9-FQQC
|
Apache Batik vulnerable to Server-Side Request Forgery | moderate |
2022-09-23T00:00:40
(2 years ago) |
|
| Affected | >= 1.0, < 1.15 |
CVE-2022-38398
|
MAVEN:GHSA-C5XV-QC8P-MH2V
|
Apache Batik Server-Side Request Forgery | moderate |
2022-09-23T00:00:39
(2 years ago) |
|
| Fixed | = 1.15 |
CVE-2022-38398
|
MAVEN:GHSA-C5XV-QC8P-MH2V
|
Apache Batik Server-Side Request Forgery | moderate |
2022-09-23T00:00:39
(2 years ago) |
|
| Affected | < 1.13 |
CVE-2019-17566
|
MAVEN:GHSA-CMX4-P4V5-HMR5
|
Server-side request forgery (SSRF) in Apache Batik | high |
2022-02-09T00:46:46
(2 years ago) |
|
| Fixed | = 1.13 |
CVE-2019-17566
|
MAVEN:GHSA-CMX4-P4V5-HMR5
|
Server-side request forgery (SSRF) in Apache Batik | high |
2022-02-09T00:46:46
(2 years ago) |
|
| Affected | >= 1.0, < 1.15 |
CVE-2022-40146
|
MAVEN:GHSA-H4QG-P7R2-CPG3
|
Apache Batik vulnerable to Server-Side Request Forgery | high |
2022-09-23T00:00:40
(2 years ago) |
|
| Fixed | = 1.15 |
CVE-2022-40146
|
MAVEN:GHSA-H4QG-P7R2-CPG3
|
Apache Batik vulnerable to Server-Side Request Forgery | high |
2022-09-23T00:00:40
(2 years ago) |
|
| Affected | < 1.9 |
CVE-2017-5662
|
MAVEN:GHSA-QWGX-59JW-QFG9
|
Improper Restriction of XML External Entity Reference in Apache Batik | high |
2022-05-13T01:14:24
(2 years ago) |
|
| Fixed | = 1.9 |
CVE-2017-5662
|
MAVEN:GHSA-QWGX-59JW-QFG9
|
Improper Restriction of XML External Entity Reference in Apache Batik | high |
2022-05-13T01:14:24
(2 years ago) |
|
| Affected | < 1.16 |
CVE-2022-41704
|
MAVEN:GHSA-R29W-R9PH-VM76
|
Apache XML Graphics Batik vulnerable to code execution via SVG. | high |
2022-10-25T19:00:29
(23 months ago) |
|
| Fixed | = 1.16 |
CVE-2022-41704
|
MAVEN:GHSA-R29W-R9PH-VM76
|
Apache XML Graphics Batik vulnerable to code execution via SVG. | high |
2022-10-25T19:00:29
(23 months ago) |
|
| Affected | < 1.16 |
CVE-2022-42890
|
MAVEN:GHSA-RWQR-M72Q-V6CM
|
Untrusted code execution in Apache XML Graphics Batik | high |
2022-10-25T19:00:29
(23 months ago) |
|
| Fixed | = 1.16 |
CVE-2022-42890
|
MAVEN:GHSA-RWQR-M72Q-V6CM
|
Untrusted code execution in Apache XML Graphics Batik | high |
2022-10-25T19:00:29
(23 months ago) |
|
| Affected | >= 1.0, < 1.8 |
CVE-2015-0250
|
MAVEN:GHSA-WFW6-MMMP-87XM
|
Improper Input Validation in Apache Batik | moderate |
2022-05-17T00:28:34
(2 years ago) |
|
| Fixed | = 1.8 |
CVE-2015-0250
|
MAVEN:GHSA-WFW6-MMMP-87XM
|
Improper Input Validation in Apache Batik | moderate |
2022-05-17T00:28:34
(2 years ago) |