Lucene search
K

6 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/01/06 3:28 p.m.5 views

Security Bulletin: IBM Operations Analytics - Log Analysis is affected by incorrect authorisation and XML external entity (XXE) vulnerabilities due to Apache Solr.

Summary Apache Solr is used by IBM Operations Analytics - Log Analysis as part of managing Solr collection and arbitary local file. CVE-2018-11802, CVE-2018-1308. Vulnerability Details CVEID:CVE-2018-11802 DESCRIPTION: In Apache Solr, the cluster can be partitioned into multiple collections and...

7.5CVSS6.3AI score0.20937EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/06/30 12:2 p.m.20 views

Security Bulletin: Apache Solr vulnerability affects IBM Operations Analytics - Log Analysis (CVE-2018-11802)

Summary Remote attacker could bypass Apache Solr security restrictions Vulnerability Details CVEID: CVE-2018-11802 DESCRIPTION: Apache Solr could allow a remote attacker to bypass security restrictions, caused by an authorization bug. By sending a specially-crafted request, an attacker could...

4.3CVSS1.7AI score0.0202EPSS
Exploits0Affected Software1
NVD
NVD
added 2020/04/01 10:15 p.m.15 views

CVE-2018-11802

In Apache Solr, the cluster can be partitioned into multiple collections and only a subset of nodes actually host any given collection. However, if a node receives a request for a collection it does not host, it proxies the request to a relevant node and serves the request. Solr bypasses all...

4.3CVSS4.3AI score0.0202EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2020/04/01 10:15 p.m.23 views

CVE-2018-11802

In Apache Solr, the cluster can be partitioned into multiple collections and only a subset of nodes actually host any given collection. However, if a node receives a request for a collection it does not host, it proxies the request to a relevant node and serves the request. Solr bypasses all...

4.3CVSS6.3AI score0.0202EPSS
Exploits0References2
CVE
CVE
added 2020/04/01 9:11 p.m.79 views

CVE-2018-11802

CVE-2018-11802 involves Apache Solr authorization bypass: if a node receives a request for a collection it does not host, it proxies the request to a node that does host it, bypassing all authorization settings. This affects Solr versions prior to 7.7 that use the default RuleBasedAuthorizationPl...

4.3CVSS4.2AI score0.0202EPSS
Exploits0References1Affected Software1
Debian CVE
Debian CVE
added 2020/04/01 9:11 p.m.24 views

CVE-2018-11802

In Apache Solr, the cluster can be partitioned into multiple collections and only a subset of nodes actually host any given collection. However, if a node receives a request for a collection it does not host, it proxies the request to a relevant node and serves the request. Solr bypasses all...

4.3CVSS4.3AI score0.0202EPSS
Exploits0
Rows per page
Query Builder