9.3

CVSS Score

3.1

Basic Information

CVE ID

CVE-2020-15232

GHSA ID

GHSA-vjv6-gq77-3mjw

EPSS Score

0.56213%

CWE

CWE-611

Published

7/7/2020

Updated

6/27/2023

KEV Status

Technology

Java

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2020-15232

CVE-2020-15232: XXE attack in Mapfish Print

Impact

A user can do to an XML External Entity (XXE) attack with the provided SDL style.

Patches

Use version >= 3.24

Workarounds

References

https://cwe.mitre.org/data/definitions/611.html
https://github.com/mapfish/mapfish-print/pull/1397/commits/e1d0527d13db06b2b62ca7d6afb9e97dacd67a0e

For more information

If you have any questions or comments about this advisory Comment the pull request: https://github.com/mapfish/mapfish-print/pull/1397

(GitHub Advisory)

9.3

CVSS Score

3.1

Basic Information

CVE ID

CVE-2020-15232

GHSA ID

GHSA-vjv6-gq77-3mjw

EPSS Score

0.56213%

CWE

CWE-611

Published

7/7/2020

Updated

6/27/2023

KEV Status

Technology

Java

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
org.mapfish.print:print-lib	maven	>= 3.0, < 3.24	3.24
org.mapfish.print:print-servlet	maven	>= 3.0, < 3.24	3.24
org.mapfish.print:print-standalone	maven	>= 3.0, < 3.24	3.24

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The critical vulnerability was patched by adding 'dbf.setFeature("http://apache.org/xml/features/disallow-doctype-decl", true)' in SLDParserPlugin.java. This indicates the XML parser in tryLoadSLD method previously allowed DTD processing, making it vulnerable to XXE injection via malicious SDL style files. The commit diff clearly shows this security hardening was the primary XXE mitigation.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

### Imp**t * us*r **n *o to *n XML *xt*rn*l *ntity (XX*) *tt**k wit* t** provi*** S*L styl*. ### P*t***s Us* v*rsion >= *.** ### Work*roun*s No ### R***r*n**s * *ttps://*w*.mitr*.or*/**t*/***initions/***.*tml * *ttps://*it*u*.*om/m*p*is*/m*p*is*-p

Reasoning

T** *riti**l vuln*r**ility w*s p*t**** *y ***in* '***.s*t***tur*("*ttp://*p****.or*/xml/***tur*s/*is*llow-*o*typ*-***l", tru*)' in `SL*P*rs*rPlu*in.j*v*`. T*is in*i**t*s t** XML p*rs*r in `tryLo**SL*` m*t*o* pr*viously *llow** *T* pro**ssin*, m*kin*

9.3

Basic Information

Concerned about an active attack path?

CVE-2020-15232: XXE attack in Mapfish Print

Impact

Patches

Workarounds

References

For more information

9.3

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI