Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2020-11991

CWE-611 — XML External Entity (XXE)6 documents6 sources

Severity

7.5HIGH

EPSS

93.1%

top 0.20%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Apache Cocoon

Timeline

PublishedSep 11

Latest updateMay 24

Description

When using the StreamGenerator, the code parse a user-provided XML. A specially crafted XML, including external system entities, could be used to access any file on the server system.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

▶NVDapache/cocoon2.1 — 2.1.12

▶CVEListV5apache_cocoonApache Cocoon 2.1.0 to 2.1.12

🔴Vulnerability Details

GHSA

GHSA-586v-g7r5-mhgp: When using the StreamGenerator, the code parse a user-provided XML↗2022-05-24

▶

CVEList

CVE-2020-11991: When using the StreamGenerator, the code parse a user-provided XML↗2020-09-11

▶

VulnCheck

Apache cocoon Improper Restriction of XML External Entity Reference↗2020

▶

💥Exploits & PoCs

Nuclei

Apache Cocoon 2.1.12 - XML Injection

▶

🔍Detection Rules

Suricata

ET EXPLOIT Apache Cocoon <= 2.1.x LFI (CVE-2020-11991)↗2021-08-02

▶