Lucene search

[email protected]CVE-2022-25370

HistorySep 02, 2022 - 7:15 a.m.

CVE-2022-25370

2022-09-0207:15:07

CWE-79

[email protected]

web.nvd.nist.gov

cve-2022-25370

apache ofbiz

birt plugin

stored xss

vulnerability

security

nvd

5.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

5.3 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

55.5%

JSON

Apache OFBiz uses the Birt plugin (https://eclipse.github.io/birt-website/) to create data visualizations and reports. In Apache OFBiz release 18.12.05, and earlier versions, by leveraging a vulnerability in Birt (https://bugs.eclipse.org/bugs/show_bug.cgi?id=538142), an unauthenticated malicious user could perform a stored XSS attack in order to inject a malicious payload and execute it using the stored XSS.

Affected configurations

Vulners

NVD

Node

apacheofbizRange≤18.12.05

CPENameOperatorVersion
apache:ofbizapache ofbizlt18.12.06

CPE	Name	Operator	Version
apache:ofbiz	apache ofbiz	lt	18.12.06

CNA Affected

[
  {
    "product": "Apache OFBiz",
    "vendor": "Apache Software Foundation",
    "versions": [
      {
        "lessThanOrEqual": "18.12.05",
        "status": "affected",
        "version": "Apache OFBiz",
        "versionType": "custom"
      }
    ]
  }
]

References

www.openwall.com/lists/oss-security/2022/09/02/8

www.openwall.com/lists/oss-security/2022/09/03/1

lists.apache.org/thread/vrvzokvxqtc4t6d7g8xgz89xpxcvjofh

Social References