8.6

CVSS Score

3.1

-

CVSS Score

Basic Information

CVE ID

CVE-2024-52807

GHSA ID

GHSA-8c3x-hq82-gjcm

EPSS Score

0.21794%

CWE

CWE-611

Published

1/24/2025

Updated

1/24/2025

KEV Status

Technology

Java

Basic Information

CVE ID

GHSA ID

EPSS Score

CWE

Published

Updated

KEV Status

Technology

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2024-52807

CVE-2024-52807: XXE vulnerability in XSLT parsing in `org.hl7.fhir.publisher`

Impact

XSLT transforms performed by various components are vulnerable to XML external entity injections. A processed XML file with a malicious DTD tag ( ]> could produce XML containing data from the host system. This impacts use cases where org.hl7.fhir.publisher is being used to within a host where external clients can submit XML.

A previous release provided an incomplete solution revealed by new testing.

Patches

This issue has been patched as of version 1.7.4

Workarounds

None

References

Previous Advisory for Incomplete solution MITRE CWE OWASP XML External Entity Prevention Cheat Sheet

(GitHub Advisory)

Miggo Vulnerability Database

→

CVE-2024-52807

CVE-2024-52807:

8.6

CVSS Score

3.1

-

CVSS Score

Basic Information

CVE ID

CVE-2024-52807

GHSA ID

GHSA-8c3x-hq82-gjcm

EPSS Score

0.21794%

CWE

CWE-611

Published

1/24/2025

Updated

1/24/2025

KEV Status

Technology

Java

Basic Information

CVE ID

GHSA ID

EPSS Score

CWE

Published

Updated

KEV Status

Technology

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
org.hl7.fhir.publisher:org.hl7.fhir.publisher.cli	maven	< 1.7.4	1.7.4
org.hl7.fhir.publisher:org.hl7.fhir.publisher.core	maven	< 1.7.4	1.7.4

Technical Details

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The analysis is based on the description of the vulnerability and the patch. The vulnerable functions are likely those involved in XML processing and XSLT transformations. The exact functions were identified based on the commit messages and the nature of the vulnerability.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.

Reasoning

*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.

8.6

-

Basic Information

Basic Information

Concerned about an active attack path?

CVE-2024-52807: XXE vulnerability in XSLT parsing in `org.hl7.fhir.publisher`

Impact

Patches

Workarounds

References

CVE-2024-52807:

8.6

-

Basic Information

Basic Information

Technical Details

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability IntelligenceMiggo AI

Basic Information

Basic Information

CVE-2024-52807: XXE vulnerability in XSLT parsing in `org.hl7.fhir.publisher`

Impact

Patches

Workarounds

References

8.6

8.6

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Technical Details

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI