Description

Several REST service endpoints of Apache Archiva are not protected against Cross Site Request Forgery (CSRF) attacks. A malicious site opened in the same browser as the archiva site, may send an HTML response that performs arbitrary actions on archiva services, with the same rights as the active archiva session (e.g. administrator rights).

Remediation

References

http://archiva.apache.org/security.html#CVE-2017-5657

http://www.securityfocus.com/bid/98570

http://www.securitytracker.com/id/1038528

https://lists.apache.org/thread.html/ff8dcfe29377088ab655fda9d585dccd5b1f07fabd94ae84fd60a7f8%40%3Ccommits.pulsar.apache.org%3E

Related Vulnerabilities

CVE-2022-25171 Vulnerability in npm package p4

CVE-2015-0227 Vulnerability in maven package org.apache.wss4j:wss4j-ws-security-dom

CVE-2023-41037 Vulnerability in maven package org.webjars.npm:github-com-openpgpjs-openpgpjs

CVE-2023-24447 Vulnerability in maven package org.jenkins-ci.plugins:rabbitmq-consumer

CVE-2023-29216 Vulnerability in maven package org.apache.linkis:linkis-common

Severity

Critical

Classification

CWE-352 CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Tags

Patch Vendor Advisory Third Party Advisory VDB Entry