Lucene search
K

11 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 5:23 a.m.29 views

Security Bulletin: Multiple vulnerabilities in Apache Solr affect IBM Rational ClearQuest (CVE-2013-6407, CVE-2013-6408)

Summary The Apache Solr that is shipped with IBM Rational ClearQuest contains multiple security vulnerabilities. IBM Rational ClearQuest has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2013-6407 DESCRIPTION: Apache Solr could allow a remote authenticated attacker to obtain...

6.4CVSS0.4AI score0.114EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/02/13 12:0 a.m.36 views

Apache Solr < 5.0 Multiple XXE

Binary data 9943.prm...

7.5CVSS6.7AI score0.114EPSS
Exploits0References4
Debian
Debian
added 2014/06/17 7:32 p.m.76 views

[SECURITY] [DSA 2963-1] lucene-solr security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2963-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff June 17, 2014 http://www.debian.org/security/faq -...

6.4CVSS6.5AI score0.56255EPSS
Exploits1
OpenVAS
OpenVAS
added 2014/06/16 12:0 a.m.34 views

Debian: Security Advisory (DSA-2963-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.5AI score0.56255EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2014/01/29 12:0 a.m.20 views

Apache Solr XML External Entity (XXE) Vulnerability (SOLR-4881, SOLR-5520) - Windows

Apache Solr is prone to an XML external entity XXE vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apache:solr";...

6.4CVSS6.5AI score0.114EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2014/01/15 5:45 p.m.66 views

Important: Red Hat Security Advisory: Red Hat JBoss Data Grid 6.2.0 update

Red Hat JBoss Data Grid 6.2.0, which fixes multiple security issues, various bugs, and adds enhancements, is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base...

7.5CVSS6.2AI score0.56255EPSS
Exploits2References10
OSV
OSV
added 2013/12/07 8:55 p.m.14 views

CVE-2013-6408

The DocumentAnalysisRequestHandler in Apache Solr before 4.3.1 does not properly use the EmptyEntityResolver, which allows remote attackers to have an unspecified impact via XML data containing an external entity declaration in conjunction with an entity reference, related to an XML External Enti...

6.6AI score
Exploits0References7
UbuntuCve
UbuntuCve
added 2013/12/07 8:55 p.m.26 views

CVE-2013-6408

The DocumentAnalysisRequestHandler in Apache Solr before 4.3.1 does not properly use the EmptyEntityResolver, which allows remote attackers to have an unspecified impact via XML data containing an external entity declaration in conjunction with an entity reference, related to an XML External Enti...

6.4CVSS5.8AI score0.114EPSS
Exploits0References3
CVE
CVE
added 2013/12/07 8:0 p.m.108 views

CVE-2013-6408

CVE-2013-6408 affects Apache Solr’s DocumentAnalysisRequestHandler prior to 4.3.1, enabling XXE via XML with external entity declarations and an entity reference. Public documents (including Nessus notes) corroborate XXE across Solr 3.6.0–4.3.1 and reference related CVEs (e.g., CVE-2013-6407). Im...

6.4CVSS6.7AI score0.114EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2013/12/07 8:0 p.m.48 views

CVE-2013-6408

The DocumentAnalysisRequestHandler in Apache Solr before 4.3.1 does not properly use the EmptyEntityResolver, which allows remote attackers to have an unspecified impact via XML data containing an external entity declaration in conjunction with an entity reference, related to an XML External Enti...

6.5AI score0.114EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2013/12/07 8:0 p.m.40 views

CVE-2013-6408

The DocumentAnalysisRequestHandler in Apache Solr before 4.3.1 does not properly use the EmptyEntityResolver, which allows remote attackers to have an unspecified impact via XML data containing an external entity declaration in conjunction with an entity reference, related to an XML External Enti...

6.4CVSS6.5AI score0.114EPSS
Exploits0
Rows per page
Query Builder