Lucene search
K

13 matches found

OSV
OSV
added 2024/03/06 11:7 a.m.24 views

BIT-SOLR-2020-13941

Reported in SOLR-14515 private and fixed in SOLR-14561 public, released in Solr version 8.6.0. The Replication handler https://lucene.apache.org/solr/guide/86/index-replication.htmlhttp-api-commands-for-the-replicationhandler allows commands backup, restore and deleteBackup. Each of these take a...

8.8CVSS8.7AI score0.03805EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2023/03/01 6:29 a.m.39 views

CVE-2019-14561

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority for the following reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none...

6.6AI score
Exploits0References3
OSV
OSV
added 2020/08/17 1:15 p.m.24 views

CVE-2020-13941

Reported in SOLR-14515 private and fixed in SOLR-14561 public, released in Solr version 8.6.0. The Replication handler https://lucene.apache.org/solr/guide/86/index-replication.htmlhttp-api-commands-for-the-replicationhandler allows commands backup, restore and deleteBackup. Each of these take a...

8.8CVSS6.8AI score
Exploits0References4
Prion
Prion
added 2020/08/17 1:15 p.m.25 views

Design/Logic Flaw

Reported in SOLR-14515 private and fixed in SOLR-14561 public, released in Solr version 8.6.0. The Replication handler https://lucene.apache.org/solr/guide/86/index-replication.htmlhttp-api-commands-for-the-replicationhandler allows commands backup, restore and deleteBackup. Each of these take a...

6.5CVSS8.7AI score0.03805EPSS
Exploits0References4Affected Software1
UbuntuCve
UbuntuCve
added 2020/08/17 1:15 p.m.23 views

CVE-2020-13941

Reported in SOLR-14515 private and fixed in SOLR-14561 public, released in Solr version 8.6.0. The Replication handler https://lucene.apache.org/solr/guide/86/index-replication.htmlhttp-api-commands-for-the-replicationhandler allows commands backup, restore and deleteBackup. Each of these take a...

8.8CVSS7.2AI score0.03805EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2020/08/17 12:16 p.m.30 views

CVE-2020-13941

Reported in SOLR-14515 private and fixed in SOLR-14561 public, released in Solr version 8.6.0. The Replication handler https://lucene.apache.org/solr/guide/86/index-replication.htmlhttp-api-commands-for-the-replicationhandler allows commands backup, restore and deleteBackup. Each of these take a...

8.8CVSS8.8AI score0.03805EPSS
Exploits0
CVE
CVE
added 2020/08/17 12:16 p.m.170 views

CVE-2020-13941

CVE-2020-13941 concerns Apache Solr’s replication handler. The vulnerability arises because the backup, restore, and deleteBackup HTTP API commands accept a location parameter that was not validated, enabling read/write access to any location the solr user can access. Multiple sources note this w...

8.8CVSS8.6AI score0.03805EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2020/08/17 12:16 p.m.25 views

CVE-2020-13941

Reported in SOLR-14515 private and fixed in SOLR-14561 public, released in Solr version 8.6.0. The Replication handler https://lucene.apache.org/solr/guide/86/index-replication.htmlhttp-api-commands-for-the-replicationhandler allows commands backup, restore and deleteBackup. Each of these take a...

8.8AI score0.03805EPSS
Exploits0References4
CVE
CVE
added 2020/07/15 5:34 p.m.45 views

CVE-2020-14561

CVE-2020-14561 affects Oracle Hospitality Reporting and Analytics (Installation component) in version 9.1.0. The advisory indicates a local, low-privilege attack requiring user interaction that could lead to takeover of Oracle Hospitality Reporting and Analytics (CVSS 3.1 base score 7.3). Connect...

7.3CVSS7.4AI score0.0046EPSS
Exploits0References1Affected Software1
Lenovo
Lenovo
added 2020/06/04 8:26 p.m.44 views

Multi-vendor BIOS Security Vulnerabilities (June 2020) - Lenovo Support US

No description provided...

7.8CVSS5.5AI score0.00345EPSS
Exploits0
OSV
OSV
added 2017/09/18 5:29 p.m.1 views

CVE-2017-14561

STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file, related to an "Illegal Instruction Violation starting at Unknown Symbol @ 0x00000000048c024d called from STDUXPSFile!DllUnregisterServer+0x0000000000025638."...

7.8CVSS6.1AI score0.00373EPSS
Exploits0References1
CVE
CVE
added 2017/09/18 5:0 p.m.46 views

CVE-2017-14561

STDU Viewer 1.6.375 is affected by a buffer overflow in its XPS handling, triggerable by a specially crafted .xps file. A local attacker can exploit this to execute arbitrary code or cause a denial of service . This vulnerability is described in CVE-2017-14561 and corroborated by CNVD-2017-30292;...

7.8CVSS7.9AI score0.00373EPSS
Exploits0References1Affected Software1
CVE
CVE
added 1976/01/01 12:0 a.m.46 views

CVE-2019-14561

CVE-2019-14561 is rejected and not used; this ID does not represent an active vulnerability entry.

6.7AI score
Exploits0
Rows per page
Query Builder