#VU74218 Arbitrary file upload in Apache Archiva - CVE-2023-28158

Cybersecurity Help s.r.o.

Published: 2023-03-30

Vulnerability identifier: #VU74218

Vulnerability risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-28158

CWE-ID: CWE-434

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Apache Archiva
Server applications / Other server solutions

Vendor: Apache Foundation

Description

The vulnerability allows a remote user to perform XSS attacks.

The vulnerability exists due to insufficient validation of file during file upload. A remote user can upload a malicious file and execute arbitrary HTML or JavaScript code in victim's browser once the uploaded file is viewed.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Apache Archiva: 1.0 - 2.2.9

External links
https://lists.apache.org/thread/8pm6d5y9cptznm0bdny3n8voovmm0dtt

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Insecure file upload in Apache Archiva