Lucene search
Veracode Vulnerability DatabaseVERACODE:6941HistoryJul 05, 2018 - 3:11 a.m.
XML External Entity (XXE)
2018-07-0503:11:40
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
9
EPSS
0.011
Percentile
84.5%
Apache Solr is vulnerable to XML External Entity (XXE) attacks. The library uses an insecure DocumentBuilderFactory class is to parse the currency.xml and enumsConfig.xml files. This can allow a malicious user with access to these files to conduct an XXE attack to reveal sensitive information.
Related
redhatcve
redhatcve
CVE-2018-8026
2018-07-06 02:48:36
nvd
nvd
CVE-2018-8026
2018-07-05 14:29:00
ubuntucve
ubuntucve
CVE-2018-8026
2018-07-05 00:00:00
cvelist
cvelist
CVE-2018-8026
2018-07-05 14:00:00
cve
cve
CVE-2018-8026
2018-07-05 14:29:00
openvas
openvas
Apache Solr Multiple XXE Vulnerabilities (SOLR-12450) - Windows
2018-08-02 00:00:00
Apache Solr Multiple XXE Vulnerabilities (SOLR-12450) - Linux
2018-08-02 00:00:00
osv
osv
XML external entity expansion in org.apache.solr:solr-core
2018-10-17 19:55:34
CVE-2018-8026
2018-07-05 14:29:00
github
github
XML external entity expansion in org.apache.solr:solr-core
2018-10-17 19:55:34
prion
prion
Xxe
2018-07-05 14:29:00
ibm
ibm
debiancve
debiancve
CVE-2018-8026
2018-07-05 14:29:00