Vulnerability Details : CVE-2013-6408
The DocumentAnalysisRequestHandler in Apache Solr before 4.3.1 does not properly use the EmptyEntityResolver, which allows remote attackers to have an unspecified impact via XML data containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-6407.
Vulnerability category: XML external entity (XXE) injection
Exploit prediction scoring system (EPSS) score for CVE-2013-6408
Probability of exploitation activity in the next 30 days: 0.34%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 68 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2013-6408
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
6.4
|
MEDIUM | AV:N/AC:L/Au:N/C:P/I:N/A:P |
10.0
|
4.9
|
NIST |
References for CVE-2013-6408
-
https://issues.apache.org/jira/browse/SOLR-4881
[SOLR-4881] Fix DocumentAnalysisRequestHandler to correctly use EmptyEntityResolver - ASF JIRAPatch
-
http://rhn.redhat.com/errata/RHSA-2014-0029.html
RHSA-2014:0029 - Security Advisory - Red Hat Customer Portal
-
http://svn.apache.org/viewvc/lucene/dev/branches/branch_4x/solr/CHANGES.txt?view=markup
ViewVC Exception
-
http://www.openwall.com/lists/oss-security/2013/11/29/2
oss-security - Re: CVE Request: Apache Solr XXE
-
http://rhn.redhat.com/errata/RHSA-2013-1844.html
Red Hat Customer Portal
Products affected by CVE-2013-6408
- cpe:2.3:a:apache:solr:*:*:*:*:*:*:*:*
- cpe:2.3:a:apache:solr:4.0.0:beta:*:*:*:*:*:*
- cpe:2.3:a:apache:solr:4.0.0:alpha:*:*:*:*:*:*
- cpe:2.3:a:apache:solr:4.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:apache:solr:4.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:apache:solr:4.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:apache:solr:4.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:apache:solr:3.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:apache:solr:3.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:apache:solr:3.6.2:*:*:*:*:*:*:*