GHSA-vr35-jm2f-8wg2MediumCVSS 4.9

Apache Syncope Vulnerable to Exposure of Sensitive Information Through Data Queries

Published
May 26, 2026
Last Modified
June 30, 2026

🔗 CVE IDs covered (1)

📋 Description

Exposure of Sensitive Information Through Data Queries vulnerability in Apache Syncope.

An administrator with adequate entitlements for Derived Schemas can create a malicious JEXL expression which allows any administrator with sufficient entitlements for User read to access User-related security-sensitive information.

This issue affects Apache Syncope: 3.0 through 3.0.16, 4.0 through 4.0.5, 4.1.0.

Users are recommended to upgrade to version 4.0.6 / 4.1.1, which fix this issue by further restricting the JEXL expression definition.

🎯 Affected products3

  • maven/org.apache.syncope.core:syncope-core-provisioning-api:>= 3.0.0-M0, <= 3.0.16
  • maven/org.apache.syncope.core:syncope-core-provisioning-api:>= 4.0.0-M0, < 4.0.6
  • maven/org.apache.syncope.core:syncope-core-provisioning-api:>= 4.1.0-M0, < 4.1.1

🔗 References (4)