Moderate severityNVD Advisory· Published Jul 5, 2021· Updated Aug 3, 2024

Display information UI XSS

CVE-2021-33192

Description

A vulnerability in the HTML pages of Apache Jena Fuseki allows an attacker to execute arbitrary javascript on certain page views. This issue affects Apache Jena Fuseki from version 2.0.0 to version 4.0.0 (inclusive).

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

Package	Affected versions	Patched versions
org.apache.jena:jena-fusekiMaven	>= 2.0.0, < 4.1.0	4.1.0

Affected products

ghsa-coords
pkg:maven/org.apache.jena/jena-fuseki
Range: >= 2.0.0, < 4.1.0
Apache/Jena Fusekicpe-rescue
Range: Apache Jena Fuseki2 2.0.0 to 4.0.0

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/advisories/GHSA-phwj-86vx-cfjcghsaADVISORY
nvd.nist.gov/vuln/detail/CVE-2021-33192ghsaADVISORY
lists.apache.org/thread.html/r684d8943d755a96fe90f8cd8df196737b6bde3f2b74e15a9bd479975%40%3Cusers.jena.apache.org%3Eghsax_refsource_MISCWEB

News mentions

No linked articles in our index yet.

cvss	0.260
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000