An XML External Entity (XXE) vulnerability exists in the Ambari/Oozie
project, allowing an attacker to inject malicious XML entities. This
vulnerability occurs due to insecure parsing of XML input using the
`DocumentBuilderFactory` class without disabling external entity
resolution. An attacker can exploit this vulnerability to read arbitrary
files on the server or perform server-side request forgery (SSRF)
attacks. The issue has been fixed in both Ambari 2.7.9 and the trunk
branch.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Mon, 09 Jun 2025 20:00:00 +0000

Type Values Removed Values Added
First Time appeared Apache
Apache ambari
CPEs cpe:2.3:a:apache:ambari:*:*:*:*:*:*:*:*
Vendors & Products Apache
Apache ambari

Wed, 22 Jan 2025 15:15:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Tue, 21 Jan 2025 23:45:00 +0000

Type Values Removed Values Added
References

Tue, 21 Jan 2025 21:30:00 +0000

Type Values Removed Values Added
Description An XML External Entity (XXE) vulnerability exists in the Ambari/Oozie project, allowing an attacker to inject malicious XML entities. This vulnerability occurs due to insecure parsing of XML input using the `DocumentBuilderFactory` class without disabling external entity resolution. An attacker can exploit this vulnerability to read arbitrary files on the server or perform server-side request forgery (SSRF) attacks. The issue has been fixed in both Ambari 2.7.9 and the trunk branch.
Title Apache Ambari: XML External Entity (XXE) Vulnerability in Ambari/Oozie
Weaknesses CWE-611
References

cve-icon MITRE

Status: PUBLISHED

Assigner: apache

Published:

Updated: 2025-01-22T14:49:46.312Z

Reserved: 2025-01-13T14:34:06.970Z

Link: CVE-2025-23195

cve-icon Vulnrichment

Updated: 2025-01-21T23:02:43.302Z

cve-icon NVD

Status : Analyzed

Published: 2025-01-21T22:15:12.863

Modified: 2025-06-09T19:36:09.710

Link: CVE-2025-23195

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.