{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"state":"PUBLISHED","cveId":"CVE-2022-41704","assignerOrgId":"f0158376-9dc2-43b6-827c-5f631a4d8d09","assignerShortName":"apache","dateUpdated":"2026-02-25T16:56:27.451Z","dateReserved":"2022-09-28T00:00:00.000Z","datePublished":"2022-10-25T00:00:00.000Z"},"containers":{"cna":{"title":"Apache Batik prior to 1.16 allows RCE when loading untrusted SVG input","providerMetadata":{"orgId":"f0158376-9dc2-43b6-827c-5f631a4d8d09","shortName":"apache","dateUpdated":"2024-01-07T11:06:25.134Z"},"descriptions":[{"lang":"en","value":"A vulnerability in Batik of Apache XML Graphics allows an attacker to run untrusted Java code from an SVG. This issue affects Apache XML Graphics prior to 1.16. It is recommended to update to version 1.16."}],"affected":[{"vendor":"Apache Software Foundation","product":"Apache XML Graphics","versions":[{"version":"Batik","status":"affected","lessThanOrEqual":"1.15","versionType":"custom"}]}],"references":[{"url":"https://lists.apache.org/thread/hplhx0o74jb7blj39fm4kw3otcnjd6xf"},{"name":"[oss-security] 20221025 [CVE-2022-41704] Apache Batik information disclosure vulnerability","tags":["mailing-list"],"url":"http://www.openwall.com/lists/oss-security/2022/10/25/2"},{"name":"[debian-lts-announce] 20221029 [SECURITY] [DLA 3169-1] batik security update","tags":["mailing-list"],"url":"https://lists.debian.org/debian-lts-announce/2022/10/msg00038.html"},{"name":"DSA-5264","tags":["vendor-advisory"],"url":"https://www.debian.org/security/2022/dsa-5264"},{"name":"GLSA-202401-11","tags":["vendor-advisory"],"url":"https://security.gentoo.org/glsa/202401-11"}],"credits":[{"lang":"en","value":"This issue was independently reported by 4ra1n of Chaitin Tech and pwnull"}],"problemTypes":[{"descriptions":[{"type":"text","lang":"en","description":"A jar file can be loaded from svg script element"}]}],"x_generator":{"engine":"Vulnogram 0.0.9"},"source":{"discovery":"UNKNOWN"}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-03T12:49:44.004Z"},"title":"CVE Program Container","references":[{"url":"https://lists.apache.org/thread/hplhx0o74jb7blj39fm4kw3otcnjd6xf","tags":["x_transferred"]},{"name":"[oss-security] 20221025 [CVE-2022-41704] Apache Batik information disclosure vulnerability","tags":["mailing-list","x_transferred"],"url":"http://www.openwall.com/lists/oss-security/2022/10/25/2"},{"name":"[debian-lts-announce] 20221029 [SECURITY] [DLA 3169-1] batik security update","tags":["mailing-list","x_transferred"],"url":"https://lists.debian.org/debian-lts-announce/2022/10/msg00038.html"},{"name":"DSA-5264","tags":["vendor-advisory","x_transferred"],"url":"https://www.debian.org/security/2022/dsa-5264"},{"name":"GLSA-202401-11","tags":["vendor-advisory","x_transferred"],"url":"https://security.gentoo.org/glsa/202401-11"}]},{"problemTypes":[{"descriptions":[{"type":"CWE","cweId":"CWE-918","lang":"en","description":"CWE-918 Server-Side Request Forgery (SSRF)"}]}],"metrics":[{"cvssV3_1":{"scope":"UNCHANGED","version":"3.1","baseScore":7.5,"attackVector":"NETWORK","baseSeverity":"HIGH","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","integrityImpact":"NONE","userInteraction":"NONE","attackComplexity":"LOW","availabilityImpact":"NONE","privilegesRequired":"NONE","confidentialityImpact":"HIGH"}},{"other":{"type":"ssvc","content":{"timestamp":"2026-02-25T16:56:13.395463Z","id":"CVE-2022-41704","options":[{"Exploitation":"none"},{"Automatable":"yes"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2026-02-25T16:56:27.451Z"}}]}}