Mend.io Vulnerability Database

What is a CVE vulnerability ID? icon What is a WS vulnerability ID? icon What is an MSC vulnerability ID? icon
New vulnerability? Tell us about it!
icon

We found results for “

CVE-2017-3163

Good to know:

icon
icon

Date: August 30, 2017

When using the Index Replication feature, Apache Solr nodes can pull index files from a master/leader node using an HTTP API which accepts a file name. However, Solr before 5.5.4 and 6.x before 6.4.1 did not validate the file name, hence it was possible to craft a special request involving path traversal, leaving any file readable to the Solr server process exposed. Solr servers protected and restricted by firewall rules and/or authentication would not be at risk since only trusted clients and users would gain direct HTTP access.

Language: Java

Severity Score

Related Resources (11)

https://access.redhat.com/errata/RHSA-2018:1448
https://lists.apache.org/thread.html/a6a33a186f293f9f9aecf3bd39c76252bfc49a79de4321dd2a53b488%40%3Csolr-user.lucene.apache.org%3E
https://access.redhat.com/errata/RHSA-2018:1449
https://lists.apache.org/thread.html/a6a33a186f293f9f9aecf3bd39c76252bfc49a79de4321dd2a53b488@%3Csolr-user.lucene.apache.org%3E
https://nvd.nist.gov/vuln/detail/CVE-2017-3163
https://access.redhat.com/errata/RHSA-2018:1447
https://access.redhat.com/errata/RHSA-2018:1451
https://github.com/advisories/GHSA-387v-84cv-9qmc
https://www.debian.org/security/2018/dsa-4124
https://access.redhat.com/errata/RHSA-2018:1450
https://www.mend.io/vulnerability-database/CVE-2017-3163

Severity Score

Weakness Type (CWE)

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CWE-22

Top Fix

icon

Upgrade Version

Upgrade to version vufind/vufind - dev-release-5.0;vufind/vufind - dev-legacy/clavius;vufind/vufind - dev-legacy/bootstrap;vufind/vufind - dev-legacy/lbs4-daia;vufind/vufind - dev-legacy/mink-autoretry;vufind/vufind - dev-pullrequest_accessib_turn-my-account-menu-into-ul;vufind/vufind - v2.5.2;vufind/vufind - v3.1;vufind/vufind - 0.4.0;mugoweb/ezfind - dev-constructor_call_fix;mugoweb/ezfind - 2.1.0;datafactory/ezfind-ls - no_fix;datafactory/ezfind-ls - v2017.07.0;crevillo/ez-price-bundle - dev-dev-ezp7;gggeek/ezfind-ls - dev-EZP-21331;gggeek/ezfind-ls - no_fix;gggeek/ezfind-ls - dev-improve_one_warning_message;eslider/solr - no_fix;se7enxweb/ezfind-ls - no_fix;se7enxweb/ezfind - no_fix;org.apache.solr:solr-core:5.5.4;org.apache.solr:solr-core:6.4.1;org.infinispan:infinispan-embedded-query:7.0.0.CR1

Learn More

CVSS v3.1

Base Score:
Attack Vector (AV): NETWORK
Attack Complexity (AC): LOW
Privileges Required (PR): NONE
User Interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality (C): HIGH
Integrity (I): NONE
Availability (A): NONE

CVSS v2

Base Score:
Access Vector (AV): NETWORK
Access Complexity (AC): LOW
Authentication (AU): NONE
Confidentiality (C): PARTIAL
Integrity (I): NONE
Availability (A): NONE
Additional information:

Do you need more information?

Contact Us