All 5 CVE vulnerabilities found in Apache XML Graphics, with AI-generated Chinese analysis, references, and POCs.
Vendor: Apache Software Foundation
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2022-41704 | Apache Batik prior to 1.16 allows RCE when loading untrusted SVG input | 7.5 | - | 2022-10-25 |
| CVE-2022-42890 | Apache Batik prior to 1.16 allows RCE via scripting | 7.5 | - | 2022-10-25 |
| CVE-2022-38398 | Server-Side Request Forgery Information Disclosure Vulnerability CWE-918 | 7.5 | - | 2022-09-22 |
| CVE-2022-38648 | PDFTranscoder does not block external resources CWE-918 | 5.3 | - | 2022-09-22 |
| CVE-2022-40146 | Jar url should be blocked by DefaultScriptSecurity CWE-918 | 7.5 | - | 2022-09-22 |
All 5 known CVE vulnerabilities affecting Apache XML Graphics with full Chinese analysis, references, and POCs where available.