CVE-2015-3271

描述

Apache Tika provides optional functionality to run itself as a web service to allow remote use. When used in this manner, it's possible for a 3rd party to pass a 'fileUrl' header to the Apache Tika Server (tika-server) before version 1.10. This header lets a remote client request that the server fetches content from the URL provided, including files from the server's local filesystem. Depending on the file permissions set on the local filesystem, this could be used to return sensitive content from the server machine. This vulnerability only exists if you are running the tika-server version 1.9, and you allow un-trusted access to the tika-server URL. Usage of Apache Tika as a standard library is not affected.

如何修補 CVE-2015-3271

要修補 CVE-2015-3271,請將受影響套件升級到下列已修補版本。

• —升級至 1.10 或更新版本

CVE-2015-3271 正在被利用嗎?

低 — EPSS 為 1.1%,目前沒有觀察到大規模利用活動。

受影響套件(1)

• from 0, < 1.10

CVSS 分數

參考連結(7)

• ADVISORYgithub.com/advisories/GHSA-ccjp-w723-2jf2
• ADVISORYnvd.nist.gov/vuln/detail/CVE-2015-3271
• PATCHgithub.com/apache/tika
• WEBlists.apache.org/thread.html/d2b3e7afb0251fac95fdee9817423cbc91e3d99a848c25a51d91c1e8@1439485507@%3Cdev.tika.apache.org%3E