2 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-3164
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Server Side Request Forgery in Apache Solr, versions 1.3 until 7.6 inclusive. Since the shards parameter does not have a corresponding whitelist mechanism, a...
CVE-2017-3164
Server Side Request Forgery in Apache Solr, versions 1.3 until 7.6 inclusive. Since the "shards" parameter does not have a corresponding whitelist mechanism, a remote attacker with access to the server could make Solr perform an HTTP GET request to any reachable URL...