Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
Security Advisories: GSA_kwCzR0hTQS0zdmpoLXhyaGYtdjl4aM4ABBYa
Improper Restriction of XML External Entity Reference in dompdf/dompdf
An improper restriction of external entities (XXE) vulnerability in dompdf/dompdf's SVG parser allows for Server-Side Request Forgery (SSRF) and deserialization attacks. This issue affects all versions prior to 2.0.0. The vulnerability can be exploited even if the isRemoteEnabled option is set to false. It allows attackers to perform SSRF, disclose internal image files, and cause PHAR deserialization attacks.
Permalink: https://github.com/advisories/GHSA-3vjh-xrhf-v9xhJSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS0zdmpoLXhyaGYtdjl4aM4ABBYa
Source: GitHub Advisory Database
Origin: Unspecified
Severity: Critical
Classification: General
Published: 6 days ago
Updated: 2 days ago
CVSS Score: 9.8
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Identifiers: GHSA-3vjh-xrhf-v9xh, CVE-2021-3902
References:
- https://nvd.nist.gov/vuln/detail/CVE-2021-3902
- https://github.com/dompdf/dompdf/commit/f56bc8e40be6c0ae0825e6c7396f4db80620b799
- https://huntr.com/bounties/a6071c07-806f-429a-8656-a4742e4191b1
- https://github.com/advisories/GHSA-3vjh-xrhf-v9xh
Blast Radius: 42.6
Affected Packages
packagist:dompdf/dompdf
Dependent packages: 555Dependent repositories: 22,012
Downloads: 112,987,439 total
Affected Version Ranges: < 2.0.0
Fixed in: 2.0.0
All affected versions: 0.6.0, 0.6.1, 0.6.2, 0.7.0, 0.8.0, 0.8.1, 0.8.2, 0.8.3, 0.8.4, 0.8.5, 0.8.6, 1.0.0, 1.0.1, 1.0.2, 1.1.0, 1.1.1, 1.2.0, 1.2.1, 1.2.2
All unaffected versions: 2.0.0, 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, 2.0.7, 2.0.8, 3.0.0