VYPR
Moderate severityNVD Advisory· Published Aug 22, 2023· Updated Feb 13, 2025

Apache XML Graphics Batik: Information disclosure vulnerability

CVE-2022-44730

Description

Server-Side Request Forgery (SSRF) vulnerability in Apache Software Foundation Apache XML Graphics Batik.This issue affects Apache XML Graphics Batik: 1.16.

A malicious SVG can probe user profile / data and send it directly as parameter to a URL.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
org.apache.xmlgraphics:batik-scriptMaven
>= 1.0, < 1.171.17

Affected products

5

Patches

Vulnerability mechanics

References

11

News mentions

0

No linked articles in our index yet.