Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2017-5661

In Apache FOP before 2.2, files lying on the filesystem of the server which uses FOP can be revealed to arbitrary users who send maliciously formed SVG files. The file types that can be shown depend on the user context in which the exploitable application is running. If the user is root a full compromise of the server - including confidential or sensitive files - would be possible. XXE can also be used to attack the availability of the server via denial of service as the references within a xml document can trivially trigger an amplification attack.

Published

2017-04-18T14:59:00.150

Last Modified

2025-04-20T01:37:25.860

Status

Deferred

Source

[email protected]

Severity

CVSSv3.0: 7.3 (HIGH)

CVSSv2 Vector

AV:N/AC:M/Au:S/C:C/I:N/A:C

Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: SINGLE
Confidentiality Impact: COMPLETE
Integrity Impact: NONE
Availability Impact: COMPLETE

Exploitability Score

6.8

Impact Score

9.2

Weaknesses

Type: Primary
CWE-611

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	apache	formatting_objects_processor	≤ 2.1	Yes

References

http://www.debian.org/security/2017/dsa-3864 ([email protected])
http://www.securityfocus.com/bid/97947 ([email protected])
https://www.tenable.com/security/tns-2021-14 ([email protected])
https://xmlgraphics.apache.org/security.html Patch, Vendor Advisory ([email protected])
http://www.debian.org/security/2017/dsa-3864 (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/97947 (af854a3a-2127-422b-91ae-364da2661108)
https://www.tenable.com/security/tns-2021-14 (af854a3a-2127-422b-91ae-364da2661108)
https://xmlgraphics.apache.org/security.html Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)