A SSRF vulnerability in WADL service description in versions of Apache CXF before 4.0.5, 3.6.4 and 3.5.9 allows an attacker to perform SSRF style attacks on REST webservices. The attack only applies if a custom stylesheet parameter is configured.

Affected Packages

Maven org.apache.cxf:cxf-rt-rs-service-description

Affected versions: 4.0.0 (fixed in 4.0.5)

Maven org.apache.cxf:cxf-rt-rs-service-description

Affected versions: 3.6.0 (fixed in 3.6.4)

Maven org.apache.cxf:cxf-rt-rs-service-description

Affected versions: 0 (fixed in 3.5.9)

Related CVEs

CVE-2024-29736

Key Information

GHSA ID

GHSA-5m3j-pxh7-455p

Published

July 19, 2024 9:32 AM

Last Modified

April 4, 2025 3:15 PM

CVSS Score

7.5 /10

Primary Ecosystem

Maven

Primary Package

org.apache.cxf:cxf-rt-rs-service-description

GitHub Reviewed

✓ Yes

Dataset

Last updated: September 10, 2025 6:31 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.