Lars Krapf

Nome do Software Vulnerável e Versões Afetadas: Versões do Apache Jackrabbit anteriores à 2.23.2 Descrição: O software contém vulnerabilidades de XXE Cego em jackrabbit-spi-commons e jackrabbit-core devido ao uso de uma construção de documento não segura para carregar privilégios. Recomendações: Atualize para a versão 2.20.17 (Java 8). Atualize para a versão 2.22.1 (Java 11). Atualize para a versão 2.23.2 (Java 11, versões beta).

**Name of the Vulnerable Software and Affected Versions** Apache Sling Engine versions prior to 2.14.0 **Description** The SlingRequestDispatcher doesn't correctly implement the RequestDispatcher API, resulting in include-based cross-site scripting issues on the Apache Sling level. An attacker who can include a resource with a specific content-type and control the include path can exploit this issue, leading to privilege escalation to administrative power. **Recommendations** Update to Apache Sling Engine version 2.14.0 or newer and enable the "Check Content-Type overrides" configuration option.

**Name of the Vulnerable Software and Affected Versions** Apache HTTP Server versions 2.4.0 through 2.4.55 **Description** The issue is related to HTTP Request Smuggling attacks, which can occur when mod proxy is enabled along with certain RewriteRule or ProxyPassMatch configurations. These configurations can allow an attacker to bypass access controls in the proxy server, proxy unintended URLs to existing origin servers, and perform cache poisoning. The vulnerability can be exploited when a non-specific pattern matches some portion of the user-supplied request-target (URL) data and is then re-inserted into the proxied request-target using variable substitution. For example, a configuration like RewriteEngine on RewriteRule "^/here/(.*)" "http://example.com:8080/elsewhere?$1"; [P] ProxyPassReverse /here/ http://example.com:8080/ can be vulnerable. Approximately 33,652,790 results are affected. **Recommendations** Update to at least version 2.4.56 of Apache HTTP Server to resolve the issue. As a temporary workaround, consider disabling the mod proxy module or restricting the use of RewriteRule and ProxyPassMatch configurations until a patch is available. Avoid using vulnerable configurations, such as those that enable variable substitution in the proxied request-target.