Description
Unrestricted Upload of File with Dangerous Type vulnerability in Apache Answer.

This issue affects Apache Answer: through 2.0.0.

The server did not sufficiently validate user-supplied image URLs, allowing arbitrary external content to be embedded as profile images, which could expose users to unintended external requests and tracking by third-party servers.
Users are recommended to upgrade to version 2.0.1, which fixes the issue.
Published: 2026-06-09
Score: 6.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The server does not validate avatar image URLs, allowing attackers to embed arbitrary external content in profile pictures. This flaw enables users to be directed to malicious third‑party servers, exposing them to tracking or hidden scripts. The vulnerability is a classic example of Unrestricted Upload of Dangerous File Type (CWE‑434).

Affected Systems

The affected product is Apache Answer from the Apache Software Foundation, versions up to and including 2.0.0.

Risk and Exploitability

The CVSS score is 6.5 and the EPSS score is less than 1%; the vulnerability is not listed in CISA’s KEV catalog. Any user who can set a profile image can exploit this issue with minimal effort, as the server processes the supplied URL without sufficient validation. Although it does not grant direct code execution, the ability to force user browsers to contact arbitrary third‑party servers poses a significant privacy and tracking risk.

Generated by OpenCVE AI on June 9, 2026 at 17:29 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Apache Answer to the patched version 2.0.1, which fixes the validation flaw.
  • Configure the avatar upload endpoint to reject external image URLs and allow only safe, internally hosted image resources.
  • Implement server‑side validation that checks the MIME type, file size, and content of uploaded images to ensure they conform to expected image standards.

Generated by OpenCVE AI on June 9, 2026 at 17:29 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 09 Jun 2026 16:30:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 09 Jun 2026 10:30:00 +0000

Type Values Removed Values Added
References

Tue, 09 Jun 2026 10:15:00 +0000

Type Values Removed Values Added
First Time appeared Apache
Apache answer
Vendors & Products Apache
Apache answer

Tue, 09 Jun 2026 08:45:00 +0000

Type Values Removed Values Added
Description Unrestricted Upload of File with Dangerous Type vulnerability in Apache Answer. This issue affects Apache Answer: through 2.0.0. The server did not sufficiently validate user-supplied image URLs, allowing arbitrary external content to be embedded as profile images, which could expose users to unintended external requests and tracking by third-party servers. Users are recommended to upgrade to version 2.0.1, which fixes the issue.
Title Apache Answer: The custom avatar was not properly validated
Weaknesses CWE-434
References

Subscriptions

Apache Answer
cve-icon MITRE

Status: PUBLISHED

Assigner: apache

Published:

Updated: 2026-06-09T15:12:18.151Z

Reserved: 2026-03-25T13:35:37.170Z

Link: CVE-2026-34031

cve-icon Vulnrichment

Updated: 2026-06-09T09:07:34.271Z

cve-icon NVD

Status : Undergoing Analysis

Published: 2026-06-09T09:16:29.310

Modified: 2026-06-09T16:16:40.820

Link: CVE-2026-34031

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-09T17:30:10Z

Weaknesses