CVE-2016-6801

HIGH

Apache Jackrabbit < 2.4.6 - CSRF

Title source: rule

Description

Cross-site request forgery (CSRF) vulnerability in the CSRF content-type check in Jackrabbit-Webdav in Apache Jackrabbit 2.4.x before 2.4.6, 2.6.x before 2.6.6, 2.8.x before 2.8.3, 2.10.x before 2.10.4, 2.12.x before 2.12.4, and 2.13.x before 2.13.3 allows remote attackers to hijack the authentication of unspecified victims for requests that create a resource via an HTTP POST request with a (1) missing or (2) crafted Content-Type header.

Exploits (3)

nomisec WORKING POC

by dawetmaster · poc

https://github.com/dawetmaster/CVE-2016-6801-jackrabbit-vulnerable

View Code ZIP pw:eip

nomisec WORKING POC

by andikahilmy · poc

https://github.com/andikahilmy/CVE-2016-6801-jackrabbit-vulnerable

View Code ZIP pw:eip

nomisec

by TSNGL21 · poc

https://github.com/TSNGL21/CVE-2016-6801

View on nomisec

References (4)

[Third Party Advisory] http://www.debian.org/security/2016/dsa-3679

[Third Party Advisory] http://www.openwall.com/lists/oss-security/2016/09/14/6

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/92966

[Vendor Advisory] https://issues.apache.org/jira/browse/JCR-4009

Scores

CVSS v3 8.8

EPSS 0.0036

EPSS Percentile 58.1%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE

CWE-352

Status published

Products (28)

apache/jackrabbit 2.4.0

apache/jackrabbit 2.4.1

apache/jackrabbit 2.4.2

apache/jackrabbit 2.4.3

apache/jackrabbit 2.4.4

apache/jackrabbit 2.4.5

apache/jackrabbit 2.6.0

apache/jackrabbit 2.6.1

apache/jackrabbit 2.6.2

apache/jackrabbit 2.6.3

... and 18 more

Published Sep 21, 2016

Tracked Since Feb 18, 2026