|Category:||Web application abuses|
|Title:||Apache Solr Remote Code Execution Vulnerability|
|Summary:||Apache Solr versions 5.1 until before 7.1 are vulnerable to XML Entity Expansion leading to Remote Code Execution.|
Apache Solr versions 5.1 until before 7.1 are vulnerable to XML Entity Expansion leading to Remote Code Execution.
Through XML Entity Expansion code from another, malicious host can be made to load and execute on the target host.
Successful exploitation would allow the attacker to execute arbitrary code on the host.
Apache Solr 5.1 through 7.0
Update to Apache Solr 7.1
BugTraq ID: 101261|
Common Vulnerability Exposure (CVE) ID: CVE-2017-12629
|Copyright||Copyright (C) 2017 Greenbone Networks GmbH|
|This is only one of 58962 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.