CVE-2017-5617 : The SVG Salamander (aka svgSalamander) library, when used in a web application,

The SVG Salamander (aka svgSalamander) library, when used in a web application, allows remote attackers to conduct server-side request forgery (SSRF) attacks via an xlink:href attribute in an SVG file.

Published 2017-03-16 15:59:01

Updated 2020-07-08 14:38:43

Source MITRE

View at NVD, CVE.org

Vulnerability category: Server-side request forgery (SSRF)

Products affected by CVE-2017-5617

Debian » Debian Linux » Version: 8.0
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
Matching versions
Kitfox » Svg Salamander » Version: N/A
cpe:2.3:a:kitfox:svg_salamander:-:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2017-5617

EPSS FAQ

1.08%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 76 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2017-5617

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.8	MEDIUM	AV:N/AC:M/Au:N/C:P/I:P/A:N	8.6	4.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: None
7.4	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N	2.8	4.0	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Changed Confidentiality: None Integrity: High Availability: None

CWE ids for CVE-2017-5617

CWE-918 Server-Side Request Forgery (SSRF)

The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2017-5617

http://www.securityfocus.com/bid/95871

SVG Salamander CVE-2017-5617 Server Side Request Forgery Security Bypass Vulnerability
Third Party Advisory;VDB Entry
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3V7RIIO3HO4RNDBN2PARLIDAL3RPV2OX/

[SECURITY] Fedora 30 Update: svgsalamander-1.1.2-1.fc30 - package-announce - Fedora Mailing-Lists
Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UPUOI6NCEB6H6YHKN7M4V3CAQD63NXAU/

[SECURITY] Fedora 29 Update: svgsalamander-1.1.2-1.fc29 - package-announce - Fedora Mailing-Lists
Third Party Advisory
https://github.com/blackears/svgSalamander/issues/11

SSRF (Server-Side Request Forgery) is possible [CVE-2017-5617] · Issue #11 · blackears/svgSalamander · GitHub
Patch;Third Party Advisory
http://www.debian.org/security/2017/dsa-3781

Debian -- Security Information -- DSA-3781-1 svgsalamander
Third Party Advisory
https://security.gentoo.org/glsa/202003-11

SVG Salamander: Server-Side Request Forgery (GLSA 202003-11) — Gentoo security
Third Party Advisory
http://www.openwall.com/lists/oss-security/2017/01/27/3

oss-security - SSRF issue in the svgsalamander library
Mailing List;Third Party Advisory
http://www.openwall.com/lists/oss-security/2017/01/29/2

oss-security - Re: SSRF issue in the svgsalamander library
Mailing List;Third Party Advisory

Jump to

Vulnerability Details : CVE-2017-5617

Products affected by CVE-2017-5617

Exploit prediction scoring system (EPSS) score for CVE-2017-5617

CVSS scores for CVE-2017-5617

CWE ids for CVE-2017-5617

References for CVE-2017-5617