Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2022-42890

A vulnerability in Batik of Apache XML Graphics allows an attacker to run Java code from untrusted SVG via JavaScript. This issue affects Apache XML Graphics prior to 1.16. Users are recommended to upgrade to version 1.16.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 37.4%
CVSS Severity
CVSS v3 Score 7.5
Products affected by CVE-2022-42890
  • Apache » Batik » Version: 1.0
    cpe:2.3:a:apache:batik:1.0
  • Apache » Batik » Version: 1.1
    cpe:2.3:a:apache:batik:1.1
  • Apache » Batik » Version: 1.1.1
    cpe:2.3:a:apache:batik:1.1.1
  • Apache » Batik » Version: 1.10
    cpe:2.3:a:apache:batik:1.10
  • Apache » Batik » Version: 1.12
    cpe:2.3:a:apache:batik:1.12
  • Apache » Batik » Version: 1.13
    cpe:2.3:a:apache:batik:1.13
  • Apache » Batik » Version: 1.14
    cpe:2.3:a:apache:batik:1.14
  • Apache » Batik » Version: 1.15
    cpe:2.3:a:apache:batik:1.15
  • Apache » Batik » Version: 1.5
    cpe:2.3:a:apache:batik:1.5
  • Apache » Batik » Version: 1.5.1
    cpe:2.3:a:apache:batik:1.5.1
  • Apache » Batik » Version: 1.6
    cpe:2.3:a:apache:batik:1.6
  • Apache » Batik » Version: 1.6.1
    cpe:2.3:a:apache:batik:1.6.1
  • Apache » Batik » Version: 1.7
    cpe:2.3:a:apache:batik:1.7
  • Apache » Batik » Version: 1.7.1
    cpe:2.3:a:apache:batik:1.7.1
  • Apache » Batik » Version: 1.8
    cpe:2.3:a:apache:batik:1.8
  • Apache » Batik » Version: 1.9
    cpe:2.3:a:apache:batik:1.9
  • Apache » Batik » Version: 1.9.1
    cpe:2.3:a:apache:batik:1.9.1
  • Debian » Debian Linux » Version: 10.0
    cpe:2.3:o:debian:debian_linux:10.0
  • Debian » Debian Linux » Version: 11.0
    cpe:2.3:o:debian:debian_linux:11.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved