Fluid Attacks Database

Description

There is a XML external entity expansion (XXE) vulnerability in Apache Solr This vulnerability in Apache Solr 1.2 to 6.6.2 and 7.0.0 to 7.2.1 relates to an XML external entity expansion (XXE) in the &dataConfig=<inlinexml> parameter of Solr's DataImportHandler. It can be used as XXE using file/ftp/http protocols in order to read arbitrary local files from the Solr server or the internal network.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
maven	org.apache.solr:solr-core	>=1.2 <6.6.3 \|\| >=7.0.0 <7.3.0	6.6.3, 7.3.0
debian 13	lucene-solr	>=0 <3.6.2+dfsg-12	3.6.2+dfsg-12
debian 12	lucene-solr	>=0 <3.6.2+dfsg-12	3.6.2+dfsg-12
debian 14	lucene-solr	>=0 <3.6.2+dfsg-12	3.6.2+dfsg-12
debian 11	lucene-solr	>=0 <3.6.2+dfsg-12	3.6.2+dfsg-12

Aliases

1. CVE-2018-13082. NVD-2018-13083. OSV-2018-13084. OSV-DEBIAN-2018-13085. GHSA-3pph-2595-cgfh6. GCVE-2018-13087. lists.debian.org8. SECURITY-TRACKER-CVE-2018-1308

References

1. https://github.com/apache/lucene-solr/commit/3530397f1777332872eac2760f9aa0e2ae1d74502. https://github.com/apache/lucene-solr/commit/739a79333. https://github.com/apache/lucene-solr/commit/dd3be31f7062dcb2f3b2d7f0e89df29e197dee634. https://issues.apache.org/jira/browse/SOLR-119715. https://lists.apache.org/thread.html/708d94141126eac03011144a971a6411fcac16d9c248d1d535a39451@%3Csolr-user.lucene.apache.org%3E6. https://mail-archives.apache.org/mod_mbox/www-announce/201804.mbox/%3C000001d3cf68%245ac69af0%241053d0d0%24%40apache.org%3E7. https://www.debian.org/security/2018/dsa-4194