13 matches found
BIT-SOLR-2020-13941
Reported in SOLR-14515 private and fixed in SOLR-14561 public, released in Solr version 8.6.0. The Replication handler https://lucene.apache.org/solr/guide/86/index-replication.htmlhttp-api-commands-for-the-replicationhandler allows commands backup, restore and deleteBackup. Each of these take a...
CVE-2019-14561
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority for the following reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none...
CVE-2020-13941
Reported in SOLR-14515 private and fixed in SOLR-14561 public, released in Solr version 8.6.0. The Replication handler https://lucene.apache.org/solr/guide/86/index-replication.htmlhttp-api-commands-for-the-replicationhandler allows commands backup, restore and deleteBackup. Each of these take a...
Design/Logic Flaw
Reported in SOLR-14515 private and fixed in SOLR-14561 public, released in Solr version 8.6.0. The Replication handler https://lucene.apache.org/solr/guide/86/index-replication.htmlhttp-api-commands-for-the-replicationhandler allows commands backup, restore and deleteBackup. Each of these take a...
CVE-2020-13941
Reported in SOLR-14515 private and fixed in SOLR-14561 public, released in Solr version 8.6.0. The Replication handler https://lucene.apache.org/solr/guide/86/index-replication.htmlhttp-api-commands-for-the-replicationhandler allows commands backup, restore and deleteBackup. Each of these take a...
CVE-2020-13941
Reported in SOLR-14515 private and fixed in SOLR-14561 public, released in Solr version 8.6.0. The Replication handler https://lucene.apache.org/solr/guide/86/index-replication.htmlhttp-api-commands-for-the-replicationhandler allows commands backup, restore and deleteBackup. Each of these take a...
CVE-2020-13941
CVE-2020-13941 concerns Apache Solr’s replication handler. The vulnerability arises because the backup, restore, and deleteBackup HTTP API commands accept a location parameter that was not validated, enabling read/write access to any location the solr user can access. Multiple sources note this w...
CVE-2020-13941
Reported in SOLR-14515 private and fixed in SOLR-14561 public, released in Solr version 8.6.0. The Replication handler https://lucene.apache.org/solr/guide/86/index-replication.htmlhttp-api-commands-for-the-replicationhandler allows commands backup, restore and deleteBackup. Each of these take a...
CVE-2020-14561
CVE-2020-14561 affects Oracle Hospitality Reporting and Analytics (Installation component) in version 9.1.0. The advisory indicates a local, low-privilege attack requiring user interaction that could lead to takeover of Oracle Hospitality Reporting and Analytics (CVSS 3.1 base score 7.3). Connect...
Multi-vendor BIOS Security Vulnerabilities (June 2020) - Lenovo Support US
No description provided...
CVE-2017-14561
STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file, related to an "Illegal Instruction Violation starting at Unknown Symbol @ 0x00000000048c024d called from STDUXPSFile!DllUnregisterServer+0x0000000000025638."...
CVE-2017-14561
STDU Viewer 1.6.375 is affected by a buffer overflow in its XPS handling, triggerable by a specially crafted .xps file. A local attacker can exploit this to execute arbitrary code or cause a denial of service . This vulnerability is described in CVE-2017-14561 and corroborated by CNVD-2017-30292;...
CVE-2019-14561
CVE-2019-14561 is rejected and not used; this ID does not represent an active vulnerability entry.