This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:apache:solr:6.2.1
Detail
VendorApacheFirst view 2017-07-07
ProductSolrLast view2019-08-01
Version6.2.1TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:apache:solr

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
92019-08-01CVE-2019-0193NetworkLowRequires ...
52019-03-08CVE-2017-3164NetworkLowNone Requ...
7.52019-03-07CVE-2019-0192NetworkLowNone Requ...
2.12018-07-05CVE-2018-8026LocalLowNone Requ...
2.12018-05-21CVE-2018-8010LocalLowNone Requ...
Hide | Show 5 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
52018-04-09CVE-2018-1308NetworkLowNone Requ...
7.52017-10-14CVE-2017-12629NetworkLowNone Requ...
62017-09-18CVE-2017-9803NetworkMediumRequires ...
52017-08-30CVE-2017-3163NetworkLowNone Requ...
52017-07-07CVE-2017-7660NetworkLowNone Requ...

CWE : Common Weakness Enumeration

%idName
44% (4)CWE-611Information Leak Through XML External Entity File Disclosure
33% (3)CWE-287Improper Authentication
11% (1)CWE-502Deserialization of Untrusted Data
11% (1)CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path ...

Snort® IPS/IDS

DateDescription
2019-10-31Apache Solr DataImportHandler arbitrary dataConfig import attempt
RuleID : 51683 - Type : POLICY-OTHER - Revision : 1
2019-10-31Apache Solr DataImportHandler arbitrary code execution attempt
RuleID : 51682 - Type : SERVER-WEBAPP - Revision : 1
2019-10-31Apache Solr DataImportHandler arbitrary code execution attempt
RuleID : 51681 - Type : SERVER-WEBAPP - Revision : 1
2019-04-27Apache Solr jmx.serviceUrl remote code execution attempt
RuleID : 49557 - Type : SERVER-WEBAPP - Revision : 2
2018-01-03Apache Solr xmlparser external doctype or entity expansion attempt
RuleID : 45084 - Type : SERVER-APACHE - Revision : 2
Hide | Show 1 More...
DateDescription
2018-01-03Apache Solr RunExecutableListener arbitrary command execution attempt
RuleID : 45083 - Type : SERVER-APACHE - Revision : 2

Nessus® Vulnerability Scanner

idDescription
2018-05-07Name : The remote Debian host is missing a security-related update.
File : debian_DSA-4194.nasl - Type : ACT_GATHER_INFO
2018-04-25Name : The remote Debian host is missing a security update.
File : debian_DLA-1360.nasl - Type : ACT_GATHER_INFO
2018-02-28Name : The remote Debian host is missing a security-related update.
File : debian_DSA-4124.nasl - Type : ACT_GATHER_INFO
2018-01-22Name : The remote Debian host is missing a security update.
File : debian_DLA-1254.nasl - Type : ACT_GATHER_INFO
2018-01-15Name : The remote Fedora host is missing a security update.
File : fedora_2017-9b3e2904bf.nasl - Type : ACT_GATHER_INFO
Hide | Show 10 More...
idDescription
2018-01-15Name : The remote Fedora host is missing a security update.
File : fedora_2017-195e7ea9a8.nasl - Type : ACT_GATHER_INFO
2017-11-29Name : The remote Fedora host is missing a security update.
File : fedora_2017-0929e71b41.nasl - Type : ACT_GATHER_INFO
2017-11-29Name : The remote Fedora host is missing a security update.
File : fedora_2017-f1535b86fa.nasl - Type : ACT_GATHER_INFO
2017-11-08Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2017-3123.nasl - Type : ACT_GATHER_INFO
2017-11-02Name : The remote Fedora host is missing a security update.
File : fedora_2017-005f8f7f7d.nasl - Type : ACT_GATHER_INFO
2017-11-02Name : The remote web server contains a Java application that is affected by multipl...
File : solr_7_1_0.nasl - Type : ACT_GATHER_INFO
2017-11-01Name : The remote Fedora host is missing a security update.
File : fedora_2017-c7bdf540b4.nasl - Type : ACT_GATHER_INFO
2017-10-16Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_e837390d0ceb46b89b3229c1195f5dc7.nasl - Type : ACT_GATHER_INFO
2017-09-27Name : The remote web server contains a Java application that is affected by a remot...
File : solr_6_6_1.nasl - Type : ACT_GATHER_INFO
2017-07-31Name : The remote Debian host is missing a security update.
File : debian_DLA-1046.nasl - Type : ACT_GATHER_INFO