CVE-2021-3902

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2021-3902

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-3902.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2021-3902

Aliases

GHSA-3vjh-xrhf-v9xh

Downstream

DEBIAN-CVE-2021-3902

Published

2024-11-15T11:15:06.190Z

Modified

2026-04-10T04:36:56.966504Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

An improper restriction of external entities (XXE) vulnerability in dompdf/dompdf's SVG parser allows for Server-Side Request Forgery (SSRF) and deserialization attacks. This issue affects all versions prior to 2.0.0. The vulnerability can be exploited even if the isRemoteEnabled option is set to false. It allows attackers to perform SSRF, disclose internal image files, and cause PHAR deserialization attacks.

References

Affected packages

Git / github.com/dompdf/dompdf

Affected ranges

Type

GIT

Repo

https://github.com/dompdf/dompdf

Events

Introduced

Fixed

79573d8b8a141ec8a17312515de8740eed014fa9

Fixed

f56bc8e40be6c0ae0825e6c7396f4db80620b799

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "2.0.0"
        }
    ]
}

Affected versions

v0.*

v0.6.0

v0.6.0-b3

v0.6.1

v0.6.2

v0.7.0

v0.7.0-beta3

v0.8.0

v0.8.1

v0.8.2

v0.8.3

v0.8.4

v0.8.5

v0.8.6

v1.*

v1.0.0

v1.0.1

v1.0.2

v1.1.0

v1.1.1

v1.2.0

v1.2.1

v1.2.2

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-3902.json"