Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2013-6397

Published: 07/12/2013 Updated: 07/11/2023
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N
Subscribe to Solr

Vulnerability Summary

Directory traversal vulnerability in SolrResourceLoader in Apache Solr prior to 4.6 allows remote malicious users to read arbitrary files via a .. (dot dot) or full pathname in the tr parameter to solr/select/, when the response writer (wt parameter) is set to XSLT. NOTE: this can be leveraged using a separate XXE (XML eXternal Entity) vulnerability to allow access to files across restricted network boundaries.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

apache solr 4.5.0

apache solr 4.0.0

apache solr

apache solr 4.2.1

apache solr 4.3.0

apache solr 4.4.0

apache solr 4.2.0

apache solr 4.3.1

apache solr 4.1.0

Vendor Advisories

Debian CVElist Bug Report Logs: lucene-solr: CVE-2013-6397 CVE-2013-6407 CVE-2013-6408
Debian Bug report logs - #731113 lucene-solr: CVE-2013-6397 CVE-2013-6407 CVE-2013-6408 Package: lucene-solr; Maintainer for lucene-solr is Debian Java Maintainers <pkg-java-maintainers@listsaliothdebianorg>; Reported by: Moritz Muehlenhoff <jmm@inutilorg> Date: Mon, 2 Dec 2013 09:06:02 UTC Severity: grave Tags: ...
Debian Security Advisories: DSA-2963-1 lucene-solr -- security update
Multiple vulnerabilities were found in Solr, an open source enterprise search server based on Lucene, resulting in information disclosure or code execution For the stable distribution (wheezy), these problems have been fixed in version 360+dfsg-1+deb7u1 For the testing distribution (jessie), these problems have been fixed in version 362+dfsg- ...
Red Hat: CVE-2013-6397
Directory traversal vulnerability in SolrResourceLoader in Apache Solr before 46 allows remote attackers to read arbitrary files via a (dot dot) or full pathname in the tr parameter to solr/select/, when the response writer (wt parameter) is set to XSLT NOTE: this can be leveraged using a separate XXE (XML eXternal Entity) vulnerability to al ...

Github Repositories

https://github.com/yamori/pm2_logs

A collection of attempted exploit requests, explained

Inspecting Malicious Requests I recently stood up a crude web application and my logs were capturing various requests my public IP was attracting I had seen some such requests before but finally decided it warranted a blog post, and you can read more there Otherwise, I'm posting this in a repository as a point of collaboration if any of my readers want to correct, infor

References

CWE-22http://secunia.com/advisories/55730http://lucene.apache.org/solr/4_6_0/changes/Changes.htmlhttp://www.agarri.fr/kom/archives/2013/11/27/compromising_an_unreachable_solr_server_with_cve-2013-6397/index.htmlhttp://www.openwall.com/lists/oss-security/2013/11/27/1https://issues.apache.org/jira/browse/SOLR-4882http://rhn.redhat.com/errata/RHSA-2013-1844.htmlhttp://rhn.redhat.com/errata/RHSA-2014-0029.htmlhttp://secunia.com/advisories/59372http://www.securityfocus.com/bid/63935https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=731113https://nvd.nist.govhttps://github.com/yamori/pm2_logshttps://access.redhat.com/security/cve/cve-2013-6397https://www.debian.org/security/./dsa-2963
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924CVE-2024-3400overflowCVE-2024-23528CVE-2024-21338CVE-2024-3818CVE-2024-23535NULL pointer dereferenceelevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook