[MAVEN:GHSA-J8QW-MWMV-28CG] Improper Limitation of a Pathname to a Restricted Directory in Apache Solr
Severity
Moderate
Affected Packages
1
Fixed Packages
1
CVEs
1
Directory traversal vulnerability in SolrResourceLoader in Apache Solr before 4.6 allows remote attackers to read arbitrary files via a .. (dot dot) or full pathname in the tr parameter to solr/select/, when the response writer (wt parameter) is set to XSLT. NOTE: this can be leveraged using a separate XXE (XML eXternal Entity) vulnerability to allow access to files across restricted network boundaries.
| Package | Affected Version |
|---|---|
 pkg:maven/org.apache.solr/solr-core
|
< 4.6.0 |
| Package | Fixed Version |
|---|---|
|
pkg:maven/org.apache.solr/solr-core
|
= 4.6.0 |
- ID
- MAVEN:GHSA-J8QW-MWMV-28CG
- Severity
- moderate
- URL
- https://github.com/advisories/GHSA-j8qw-mwmv-28cg
- Published
-
2022-05-17T04:04:29
(2 years ago) - Modified
-
2023-02-15T22:16:59
(19 months ago) - Rights
- Maven Security Team
- Other Advisories
DSA-2963-1| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |