Lucene search
K

4 matches found

OSV
OSV
added 2018/10/17 3:43 p.m.1 views

GHSA-9R24-GP44-H3PM Command injection in org.apache.tika:tika-core

From Apache Tika versions 1.7 to 1.17, clients could send carefully crafted headers to tika-server that could be used to inject commands into the command line of the server running tika-server. This vulnerability only affects those running tika-server on a server that is open to untrusted clients...

8.1CVSS5.9AI score0.93972EPSS
Exploits10References7
NVD
NVD
added 2018/04/25 9:29 p.m.13 views

CVE-2018-1335

From Apache Tika versions 1.7 to 1.17, clients could send carefully crafted headers to tika-server that could be used to inject commands into the command line of the server running tika-server. This vulnerability only affects those running tika-server on a server that is open to untrusted clients...

9.3CVSS8.1AI score0.93972EPSS
Exploits10References5
UbuntuCve
UbuntuCve
added 2018/04/25 9:29 p.m.22 views

CVE-2018-1338

A carefully crafted or fuzzed file can trigger an infinite loop in Apache Tika's BPGParser in versions of Apache Tika before 1.18...

5.5CVSS6.4AI score0.01984EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2018/04/25 9:0 p.m.29 views

CVE-2018-1335

From Apache Tika versions 1.7 to 1.17, clients could send carefully crafted headers to tika-server that could be used to inject commands into the command line of the server running tika-server. This vulnerability only affects those running tika-server on a server that is open to untrusted clients...

9.3CVSS8.1AI score0.93972EPSS
Exploits10
Rows per page
Query Builder