Home

CVE-2020-13936

Description

An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. This applies to applications that allow untrusted users to upload/modify velocity templates running Apache Velocity Engine versions up to 2.2.

Risk Information

Base Score
8.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
15.347

Associated Vulnerability

VulnerabilityOS Platform
Multiple vulnerabilities are affected in Oracle WebLogic Server 12.2.1.4.0Windows
Multiple vulnerabilities are affected in Oracle WebLogic Server 14.1.1.0.0Windows
Vulnerabilities CVE-2020-13936 are affected in Apache - velocity 1.7Windows
Vulnerabilities CVE-2020-13936 are fixed in Apache - velocity-engine-parent 2.3Windows
A general purpose template engine written in Java (USN-6281-1) velocity_1.7-4_all.debLinux
A general purpose template engine written in Java (USN-6281-1) velocity_1.7-5_all.debLinux
A general purpose template engine written in Java (USN-6281-1) velocity_1.7-5+deb9u1build0.20.04.1_all.debLinux
velocity Security Update (ALAS-2021-1690) velocity-1.7-10.2.amzn2.noarch.rpmLinux
velocity Security Update (ALAS-2021-1690) velocity-demo-1.7-10.2.amzn2.noarch.rpmLinux
velocity Security Update (ALAS-2021-1690) velocity-manual-1.7-10.2.amzn2.noarch.rpmLinux
velocity Security Update (ALAS-2021-1690) velocity-javadoc-1.7-10.2.amzn2.noarch.rpmLinux
SUSE-SU-2025:0719-1(Development Tools Module 15-SP6) maven-surefire-plugin-3.5.2-150200.3.9.20.2.noarch.rpmLinux
SUSE-SU-2025:0719-1(Development Tools Module 15-SP6) maven-surefire-3.5.2-150200.3.9.20.12.noarch.rpmLinux
SUSE-SU-2025:0719-1(Development Tools Module 15-SP6) maven-plugin-annotations-3.15.1-150200.3.15.12.noarch.rpmLinux
SUSE-SU-2025:0719-1(Development Tools Module 15-SP6) maven-invoker-3.3.0-150200.3.7.5.noarch.rpmLinux
Vulnerabilities CVE-2020-13936 are affected in Apache - velocity for Linux 1.7Linux
Vulnerabilities CVE-2020-13936 are fixed in Apache - velocity-engine-parent for Linux 2.3Linux
CVE-2020-13936NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234