<Vulnerability name="CVE-2026-13503">
    <DocumentDistribution xml:lang="en">Copyright © 2012 Red Hat, Inc. All rights reserved.</DocumentDistribution>
    <ThreatSeverity>Moderate</ThreatSeverity>
    <PublicDate>2026-06-28T15:15:07</PublicDate>
    <Bugzilla id="2493994" url="https://bugzilla.redhat.com/show_bug.cgi?id=2493994" xml:lang="en:us">
antlr: ANTLR4: antlr ANTLR4: Path traversal via manipulation of getImportedVocabFile function
    </Bugzilla>
    <CVSS3 status="draft">
        <CVSS3BaseScore>5.3</CVSS3BaseScore>
        <CVSS3ScoringVector>CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N</CVSS3ScoringVector>
    </CVSS3>
    <CWE>CWE-22</CWE>
    <Details xml:lang="en:us" source="Mitre">
A vulnerability was detected in antlr ANTLR4 up to 4.13.2. Affected by this issue is the function getImportedVocabFile of the file tool/src/org/antlr/v4/parse/TokenVocabParser.java of the component tokenVocab Grammar Option Handler. The manipulation results in path traversal. The attack can be executed remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
    </Details>
    <Details xml:lang="en:us" source="Red Hat">
A flaw was found in antlr ANTLR4. A remote attacker can exploit a path traversal vulnerability by manipulating the `getImportedVocabFile` function within the `tokenVocab Grammar Option Handler` component. This could allow unauthorized access to sensitive files and directories on the system.
    </Details>
    <Statement xml:lang="en:us">
Successful exploitation requires a specific scenario where an application using ANTLR4 is configured to accept and parse untrusted, attacker-supplied grammar files containing a manipulated tokenVocab option.

Impact Limitations: The vulnerability is strictly limited to information disclosure via path traversal. While a remote attacker can read sensitive files that the application has permissions to access, this flaw does not inherently allow for remote code execution (RCE), data corruption, or privilege escalation on the host system.
    </Statement>
    <Mitigation xml:lang="en:us">
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.
    </Mitigation>
    <PackageState cpe="cpe:/o:redhat:enterprise_linux:10">
        <ProductName>Red Hat Enterprise Linux 10</ProductName>
        <FixState>Fix deferred</FixState>
        <PackageName>antlr</PackageName>
    </PackageState>
    <PackageState cpe="cpe:/o:redhat:enterprise_linux:6">
        <ProductName>Red Hat Enterprise Linux 6</ProductName>
        <FixState>Out of support scope</FixState>
        <PackageName>antlr</PackageName>
    </PackageState>
    <PackageState cpe="cpe:/o:redhat:enterprise_linux:7">
        <ProductName>Red Hat Enterprise Linux 7</ProductName>
        <FixState>Out of support scope</FixState>
        <PackageName>antlr</PackageName>
    </PackageState>
    <PackageState cpe="cpe:/o:redhat:enterprise_linux:8">
        <ProductName>Red Hat Enterprise Linux 8</ProductName>
        <FixState>Fix deferred</FixState>
        <PackageName>antlr</PackageName>
    </PackageState>
    <PackageState cpe="cpe:/o:redhat:enterprise_linux:8">
        <ProductName>Red Hat Enterprise Linux 8</ProductName>
        <FixState>Fix deferred</FixState>
        <PackageName>grafana</PackageName>
    </PackageState>
    <PackageState cpe="cpe:/o:redhat:enterprise_linux:9">
        <ProductName>Red Hat Enterprise Linux 9</ProductName>
        <FixState>Fix deferred</FixState>
        <PackageName>antlr</PackageName>
    </PackageState>
    <References xml:lang="en:us">
https://www.cve.org/CVERecord?id=CVE-2026-13503
https://nvd.nist.gov/vuln/detail/CVE-2026-13503
https://github.com/wooyun123/wooyun/issues/8
https://vuldb.com/cve/CVE-2026-13503
https://vuldb.com/submit/838686
https://vuldb.com/vuln/374497
https://vuldb.com/vuln/374497/cti
    </References>
</Vulnerability>