Vulnerability Description
Several REST service endpoints of Apache Archiva are not protected against Cross Site Request Forgery (CSRF) attacks. A malicious site opened in the same browser as the archiva site, may send an HTML response that performs arbitrary actions on archiva services, with the same rights as the active archiva session (e.g. administrator rights).
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apache | Archiva | <= 2.2.1 |
Related Weaknesses (CWE)
References
- http://archiva.apache.org/security.html#CVE-2017-5657PatchVendor Advisory
- http://www.securityfocus.com/bid/98570Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1038528
- https://lists.apache.org/thread.html/ff8dcfe29377088ab655fda9d585dccd5b1f07fabd9
- http://archiva.apache.org/security.html#CVE-2017-5657PatchVendor Advisory
- http://www.securityfocus.com/bid/98570Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1038528
- https://lists.apache.org/thread.html/ff8dcfe29377088ab655fda9d585dccd5b1f07fabd9
FAQ
What is CVE-2017-5657?
CVE-2017-5657 is a vulnerability with a CVSS score of 8.0 (HIGH). Several REST service endpoints of Apache Archiva are not protected against Cross Site Request Forgery (CSRF) attacks. A malicious site opened in the same browser as the archiva site, may send an HTML ...
How severe is CVE-2017-5657?
CVE-2017-5657 has been rated HIGH with a CVSS base score of 8.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-5657?
Check the references section above for vendor advisories and patch information. Affected products include: Apache Archiva.