CVE-2013-6408

🗓️ 07 Dec 2013 20:55:02Reported by [email protected]Type

Apache Solr DocumentAnalysisRequestHandler XML External Entity (XXE) issu

Reporter	Title	Published	Views	Family All 30
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in Apache Solr affect IBM Rational ClearQuest (CVE-2013-6407, CVE-2013-6408)	17 Jun 201805:23	–	ibm
Tenable Nessus	Apache Solr < 5.0 Multiple XXE	13 Feb 201700:00	–	nessus
Tenable Nessus	Debian DSA-2963-1 : lucene-solr - security update	18 Jun 201400:00	–	nessus
Tenable Nessus	Apache Solr < 4.3.1 XML External Entity Injection	7 Jan 201400:00	–	nessus
Tenable Nessus	Apache Solr 3.6.0 < 4.3.1 XML External Entity	22 Jan 202000:00	–	nessus
BDU FSTEC	Vulnerabilities of the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
CVE	CVE-2013-6408	7 Dec 201320:00	–	cve
Cvelist	CVE-2013-6408	7 Dec 201320:00	–	cvelist
Debian	[SECURITY] [DSA 2963-1] lucene-solr security update	17 Jun 201419:32	–	debian
Debian CVE	CVE-2013-6408	7 Dec 201320:00	–	debiancve

NVD

Node

apache solrRange≤4.3.0

apache solrMatch3.6.0

apache solrMatch3.6.1

apache solrMatch3.6.2

apache solrMatch4.0.0

apache solrMatch4.0.0alpha

apache solrMatch4.0.0beta

apache solrMatch4.1.0

apache solrMatch4.2.0

apache solrMatch4.2.1

Source	Link
secunia	www.secunia.com/advisories/55542
openwall	www.openwall.com/lists/oss-security/2013/11/29/2
issues	www.issues.apache.org/jira/browse/SOLR-4881
rhn	www.rhn.redhat.com/errata/RHSA-2014-0029.html
secunia	www.secunia.com/advisories/59372
rhn	www.rhn.redhat.com/errata/RHSA-2013-1844.html
svn	www.svn.apache.org/viewvc/lucene/dev/branches/branch_4x/solr/CHANGES.txt

17 Jun 2026 00:00Current

6.5Medium risk

Vulners AI Score6.5

CVSS 26.4

EPSS0.114