CVE Tools
Sign in

CVE-2016-6812

Published: Aug 10, 2017Updated: May 13, 2026 Sources: CVE List NVD GHSACWE-79
NVD MITRE
6.1CVSSMEDIUM
EPSS Score
8.1%
Top 5.9%
CISA KEV
Not in KEV
Exploits
No Known Exploits
Remediation
Patch Available

Description

The HTTP transport module in Apache CXF prior to 3.0.12 and 3.1.x prior to 3.1.9 uses FormattedServiceListWriter to provide an HTML page which lists the names and absolute URL addresses of the available service endpoints. The module calculates the base URL using the current HttpServletRequest. The calculated base URL is used by FormattedServiceListWriter to build the service endpoint absolute URLs. If the unexpected matrix parameters have been injected into the request URL then these matrix parameters will find their way back to the client in the services list page which represents an XSS risk to the client.

CVSS Vector Breakdown

AV:NAC:LPR:NUI:RS:CC:LI:LA:N
Exploitability
AV:NAttack Vector
Network
AC:LAttack Complexity
Low
PR:NPrivileges Required
None
UI:RUser Interaction
Required
Scope
S:CScope
Changed
Impact
C:LConfidentiality
Low
I:LIntegrity
Low
A:NAvailability
None
Open in CVSS calculator →

Weaknesses

CWE-79

Affected Products

cxfapache
LibraryLibrary
OSS Libraries / generic-library
org.apache.cxf:cxf-coreMavenOSS Libraries
Apache CXFApache Software Foundation
Library
OSS Libraries / generic-library
apacheoss-projectUSWeb & CMS Pluginsaka apache http server, apache httpd
mavenpackage-ecosystemOSS Libraries
apache software foundationoss-projectUSWeb & CMS Pluginsaka apache foundation

Attack Graph

Products CVE Techniques Tactics

Click technique nodes to view MITRE ATT&CK details. Scroll to zoom, drag to pan.

Exploitability

Official Patch Available

MITRE ATT&CK

2 techniques
Execution
Initial Access
View detailed technique mapping

References

http://cxf.apache.org/security-advisories.data/CVE-2016-6812.txt.asc
cxf.apache.org
http://www.securityfocus.com/bid/97582
securityfocus.com
http://www.securitytracker.com/id/1037543
securitytracker.com
and 20 more references View all →

Timeline

Published
Aug 10, 2017
Last Updated
May 13, 2026

Unlock Complete Vulnerability Intelligence

Get the full picture for CVE-2016-6812 and every CVE in our database. Create a free account — no credit card required.

Create Free Account
Plain-language analysis
Impact assessment and exploitation scenario in plain English
Attack graph visualization
Interactive attack path and kill chain mapping
Exploit details & PoC links
ExploitDB, Metasploit, GitHub PoCs with direct links
Nuclei scanner templates
Ready-to-use vulnerability scanner templates
Full remediation guide
Patch instructions, workarounds, and compliance impact
Interactive AI chat
Ask questions about this vulnerability in natural language
Related vulnerabilities
Semantically similar CVEs and attack patterns
REST API & MCP access
Integrate vulnerability data into your workflows