HomePentest-Tools.com Logo

Apache Solr XML External Entity (XXE) Vulnerability (SOLR-4881, SOLR-5520) - Windows CVE-2013-6408

Severity
Not available
CVSSv3 Score
Not available
Vulnerability description

Apache Solr is prone to an XML external entity (XXE) vulnerability.

Risk description

The flaw is due to error in DocumentAnalysisRequestHandler when parsing XML entities. Successful exploitation will allow remote attackers to gain potentially sensitive information and potentially perform other more advanced XXE attacks.

Recommendation

Update to version 3.6.3, 4.3.1 or later.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Dec 7, 2013
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available