CVE-2022-28890

A vulnerability in the RDF/XML parser of Apache Jena allows an attacker to cause an external DTD to be retrieved. This issue affects Apache Jena version 4.4.0 and prior versions. Apache Jena 4.2.x and 4.3.x do not allow external entities.

CVSS v3 9.8 CRITICAL
CVSS v2.0 7.5 HIGH

9.8^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

7.5^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
https://lists.apache.org/thread/h88oh642455wljo0p5jgzs9phk4gj878	Mailing List Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:apache:jena:4.4.0:*:*:*:*:*:*:*

History

25 Oct 2023, 17:01

Type	Values Removed	Values Added
CPE	cpe:2.3:a:apache:jena::::::::

13 May 2022, 14:48

Type	Values Removed	Values Added
References	~~(MISC) https://lists.apache.org/thread/h88oh642455wljo0p5jgzs9phk4gj878 -~~	(MISC) https://lists.apache.org/thread/h88oh642455wljo0p5jgzs9phk4gj878 - Mailing List, Vendor Advisory
First Time		Apache jena Apache
CWE		CWE-611
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : 7.5 v3 : 9.8
CPE		cpe:2.3:a:apache:jena:4.4.0:::::::* cpe:2.3:a:apache:jena::::::::

05 May 2022, 09:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2022-05-05 09:15

Updated : 2023-12-10 14:22

NVD link : CVE-2022-28890

Mitre link : CVE-2022-28890

CVE.ORG link : CVE-2022-28890

JSON object : View

Products Affected

apache

jena

CWE

CWE-611

Improper Restriction of XML External Entity Reference

{"id": "CVE-2022-28890", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2022-05-05T09:15:08.140", "references": [{"url": "https://lists.apache.org/thread/h88oh642455wljo0p5jgzs9phk4gj878", "tags": ["Mailing List", "Vendor Advisory"], "source": "security@apache.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-611"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability in the RDF/XML parser of Apache Jena allows an attacker to cause an external DTD to be retrieved. This issue affects Apache Jena version 4.4.0 and prior versions. Apache Jena 4.2.x and 4.3.x do not allow external entities."}, {"lang": "es", "value": "Una vulnerabilidad en el analizador RDF/X de Apache Jena permite a un atacante causar la recuperaci\u00f3n de un DTD externo. Este problema afecta a Apache Jena versi\u00f3n 4.4.0 y a las versiones anteriores. Apache Jena versiones 4.2.x y 4.3.x no permiten entidades externas"}], "lastModified": "2023-10-25T17:01:16.697", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:apache:jena:4.4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BECFCBB8-D1E4-4413-86EB-FDD040601A4F"}], "operator": "OR"}]}], "sourceIdentifier": "security@apache.org"}