CVE-2021-33192

Name of the Vulnerable Software and Affected Versions Apache Jena Fuseki versions 2.0.0 through 4.0.0

Description A vulnerability in the HTML pages of Apache Jena Fuseki allows an attacker to execute arbitrary javascript on certain page views.

Recommendations For versions 2.0.0 through 4.0.0, consider disabling javascript execution on HTML pages as a temporary workaround until a patch is available. Restrict access to the HTML pages of Apache Jena Fuseki to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.