Hibernate-Validator SafeHtmlValidator XSS Bypass
CVE-2023-1932 Published on November 7, 2024

Hibernate-validator: rendering of invalid html with safehtml leads to html injection and xss
A flaw was found in hibernate-validator's 'isValid' method in the org.hibernate.validator.internal.constraintvalidators.hv.SafeHtmlValidator class, which can be bypassed by omitting the tag ending in a less-than character. Browsers may render an invalid html, allowing HTML injection or Cross-Site-Scripting (XSS) attacks.

NVD

Vulnerability Analysis

CVE-2023-1932 is exploitable with network access, requires user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have a small impact on confidentiality and integrity, and no impact on availability.

Attack Vector:
NETWORK
Attack Complexity:
LOW
Privileges Required:
NONE
User Interaction:
REQUIRED
Scope:
CHANGED
Confidentiality Impact:
LOW
Integrity Impact:
LOW
Availability Impact:
NONE

Timeline

Reported to Red Hat.

Made public. 1441 days later.

Weakness Type

What is a XSS Vulnerability?

The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

CVE-2023-1932 has been classified to as a XSS vulnerability or weakness.


Products Associated with CVE-2023-1932

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2023-1932 are published in these products:

Red Hat Hibernate Validator
 
Red Hat Jboss Enterprise Application Platform
 
Red Hat Single Sign On
 
Red Hat Openstack Platform
 
Red Hat Codeready Studio
 
Hibernate Validator
 

Affected Versions

Red Hat A-MQ Clients 2: Red Hat Cryostat 2: Red Hat AMQ Broker 7: Red Hat A-MQ Online: Red Hat BPM Suite 6: Red Hat CodeReady Studio 12: Red Hat Data Grid 8: Red Hat Decision Manager 7: Red Hat Fuse 7: Red Hat JBoss BRMS 5: Red Hat JBoss Data Grid 7: Red Hat JBoss Data Virtualization 6: Red Hat JBoss Enterprise Application Platform 5: Red Hat JBoss Enterprise Application Platform 6: Red Hat JBoss Enterprise Application Platform 7: Red Hat JBoss Enterprise Application Platform Continuous Delivery: Red Hat JBoss Fuse 6: Red Hat JBoss Fuse Service Works 6: Red Hat JBoss Operations Network 3: Red Hat JBoss SOA Platform 5: Red Hat OpenStack Platform 10 (Newton): Red Hat OpenStack Platform 13 (Queens): Red Hat Process Automation 7: Red Hat Satellite 6: Red Hat Single Sign-On 7: Red Hat support for Spring Boot: Red Hat streams for Apache Kafka:

Exploit Probability

EPSS
0.40%
Percentile
60.32%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.