Lucene search
K

35 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2024/06/18 2:2 p.m.65 views

Security Bulletin: Multiple security vulnerabilities are addressed with IBM Business Automation Manager Open Editions 8.0.2

Summary In addition to updates of open source dependencies, the following security vulnerabilities are addressed with IBM Business Automation Manager Open Editions 8.0.2 Vulnerability Details CVEID:CVE-2018-1000134 DESCRIPTION: Ping Identity UnboundID LDAP SDK could allow a remote attacker to...

9.8CVSS9.2AI score0.91896EPSS
Exploits17Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.18 views

RHEL 6 : lucene (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - Solr: Code execution via entity expansion CVE-2017-12629 Note that Nessus has not tested for this issue but has...

9.8CVSS9.7AI score0.91896EPSS
Exploits11References1
Tenable Nessus
Tenable Nessus
added 2024/04/27 12:0 a.m.24 views

RHEL 6 / 7 : rh-java-common-lucene5 (RHSA-2017:3452)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2017:3452 advisory. Apache Lucene is a high-performance, full-featured text search engine library written entirely in Java. It is a technology suitable for nearly an...

9.8CVSS8.2AI score0.91896EPSS
Exploits11References6
Tenable Nessus
Tenable Nessus
added 2024/04/27 12:0 a.m.23 views

RHEL 6 / 7 : rh-java-common-lucene (RHSA-2017:3451)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2017:3451 advisory. Apache Lucene is a high-performance, full-featured text search engine library written entirely in Java. It is a technology suitable for nearly an...

9.8CVSS8.2AI score0.91896EPSS
Exploits11References6
F5 Networks
F5 Networks
added 2023/02/21 8:0 p.m.107 views

K10631153: Apache Solr vulnerability CVE-2017-12629

Security Advisory Description Remote code execution occurs in Apache Solr before 7.1 with Apache Lucene before 7.1 by exploiting XXE in conjunction with use of a Config API add-listener command to reach the RunExecutableListener class. Elasticsearch, although it uses Lucene, is NOT vulnerable to...

9.8CVSS9AI score0.91896EPSS
Exploits11
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.23 views

Mageia: Security Advisory (MGASA-2017-0403)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.91896EPSS
Exploits11References4
IBM Security Bulletins
IBM Security Bulletins
added 2020/07/18 11:22 p.m.46 views

Security Bulletin: IBM InfoSphere BigInsights 4.2.5 is affected by an Open Source (Solr) vulnerabilty (CVE-2017-12629)

Summary IBM InfoSphere BigInsights 4.2.5 is affected by an Open Source Solr vulnerabilty CVE-2017-12629 Vulnerability Details CVE-ID: CVE-2017-12629 Description: Remote code execution occurs in Apache Solr before 7.1 with Apache Lucene before 7.1 by exploiting XXE in conjunction with use of a...

9.8CVSS0.3AI score0.91896EPSS
Exploits11Affected Software1
RedHat Linux
RedHat Linux
added 2020/06/15 4:8 p.m.88 views

Critical: Red Hat Security Advisory: EAP Continuous Delivery Technical Preview Release 12 security update

This is a security update for JBoss EAP Continuous Delivery 12.0. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

9.8CVSS7.3AI score0.91896EPSS
Exploits11References6
RedhatCVE
RedhatCVE
added 2019/10/10 9:16 p.m.41 views

CVE-2017-12629

It was found that Apache Lucene would accept an object from an unauthenticated user that could be manipulated through subsequent post requests. An attacker could use this flaw to assemble an object that could permit execution of arbitrary code if the server enabled Apache Solr's Config API...

9.8CVSS2.7AI score0.91896EPSS
Exploits11References2
Debian
Debian
added 2018/02/27 7:38 p.m.82 views

[SECURITY] [DSA 4124-1] lucene-solr security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4124-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff February 27, 2018 https://www.debian.org/security/faq -...

9.8CVSS9.9AI score0.91896EPSS
Exploits11
Tenable Nessus
Tenable Nessus
added 2018/01/15 12:0 a.m.35 views

Fedora 27 : lucene (2017-9b3e2904bf)

Security fix for CVE-2017-12629 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 7030...

9.8CVSS8AI score0.91896EPSS
Exploits11References2
RedHat Linux
RedHat Linux
added 2018/01/10 6:4 p.m.34 views

Solr/Lucene -security bypass to access sensitive data - CVE-2017-12629

No description provided...

2.4AI score0.91896EPSS
Exploits11
RedHat Linux
RedHat Linux
added 2018/01/03 10:49 a.m.122 views

Important: Red Hat Security Advisory: eap7-jboss-ec2-eap security update

An update for eap7-jboss-ec2-eap is now available for Red Hat JBoss Enterprise Application Platform 7.0 for Red Hat Enterprise Linux 6 and Red Hat JBoss Enterprise Application Platform 7.0 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact o...

9.8CVSS6.7AI score0.91896EPSS
Exploits11References12
RedHat Linux
RedHat Linux
added 2018/01/03 10:31 a.m.140 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.0.9 security update on RHEL 7

An update is now available for Red Hat JBoss Enterprise Application Platform 7.0 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

9.8CVSS6.8AI score0.91896EPSS
Exploits11References12
RedHat Linux
RedHat Linux
added 2018/01/03 10:20 a.m.89 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.0.9 security update

An update is now available for Red Hat JBoss Enterprise Application Platform. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

9.8CVSS6.8AI score0.91896EPSS
Exploits11References11
RedHat Linux
RedHat Linux
added 2017/12/12 5:40 p.m.50 views

Moderate: Red Hat Security Advisory: rh-java-common-lucene security update

An update for rh-java-common-lucene is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS7.2AI score0.91896EPSS
Exploits11References3
OpenVAS
OpenVAS
added 2017/12/04 12:0 a.m.38 views

Fedora Update for lucene4 FEDORA-2017-195e7ea9a8

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.91896EPSS
Exploits11References2
Tenable Nessus
Tenable Nessus
added 2017/11/29 12:0 a.m.29 views

Fedora 25 : lucene4 (2017-f1535b86fa)

Security fix for CVE-2017-12629 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 7030...

9.8CVSS8AI score0.91896EPSS
Exploits11References2
Tenable Nessus
Tenable Nessus
added 2017/11/29 12:0 a.m.40 views

Fedora 26 : lucene4 (2017-0929e71b41)

Security fix for CVE-2017-12629 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 7030...

9.8CVSS8AI score0.91896EPSS
Exploits11References2
RedHat Linux
RedHat Linux
added 2017/11/16 7:52 p.m.63 views

Important: Red Hat Security Advisory: Red Hat JBoss Data Grid 7.1.1 security update

Red Hat JBoss Data Grid 7.1.1 is now available for download from the Customer Portal. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS7.8AI score0.91896EPSS
Exploits16References7
Rows per page
Query Builder