FKIE_CVE-2013-6408

Vulnerability from fkie_nvd - Published: 2013-12-07 20:55 - Updated: 2025-04-11 00:51
Severity ?
Summary
The DocumentAnalysisRequestHandler in Apache Solr before 4.3.1 does not properly use the EmptyEntityResolver, which allows remote attackers to have an unspecified impact via XML data containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-6407.
References
secalert@redhat.comhttp://rhn.redhat.com/errata/RHSA-2013-1844.html
secalert@redhat.comhttp://rhn.redhat.com/errata/RHSA-2014-0029.html
secalert@redhat.comhttp://secunia.com/advisories/55542Vendor Advisory
secalert@redhat.comhttp://secunia.com/advisories/59372
secalert@redhat.comhttp://svn.apache.org/viewvc/lucene/dev/branches/branch_4x/solr/CHANGES.txt?view=markup
secalert@redhat.comhttp://www.openwall.com/lists/oss-security/2013/11/29/2
secalert@redhat.comhttps://issues.apache.org/jira/browse/SOLR-4881Patch
af854a3a-2127-422b-91ae-364da2661108http://rhn.redhat.com/errata/RHSA-2013-1844.html
af854a3a-2127-422b-91ae-364da2661108http://rhn.redhat.com/errata/RHSA-2014-0029.html
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/55542Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/59372
af854a3a-2127-422b-91ae-364da2661108http://svn.apache.org/viewvc/lucene/dev/branches/branch_4x/solr/CHANGES.txt?view=markup
af854a3a-2127-422b-91ae-364da2661108http://www.openwall.com/lists/oss-security/2013/11/29/2
af854a3a-2127-422b-91ae-364da2661108https://issues.apache.org/jira/browse/SOLR-4881Patch
Impacted products
Vendor Product Version
apache solr *
apache solr 3.6.0
apache solr 3.6.1
apache solr 3.6.2
apache solr 4.0.0
apache solr 4.0.0
apache solr 4.0.0
apache solr 4.1.0
apache solr 4.2.0
apache solr 4.2.1
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:apache:solr:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "691CA27D-D195-43DF-81FE-4B9BC513E6D1",
              "versionEndIncluding": "4.3.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:solr:3.6.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "E1281390-06F8-49B0-9B14-B1971E7FD0FE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:solr:3.6.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "1E5BBACF-7621-44CC-B6A6-B9FC7D517AF6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:solr:3.6.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "B946619D-507C-40D6-B530-948BF41229B2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:solr:4.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "06216B21-FC73-480F-90A2-B0D358FAEE11",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:solr:4.0.0:alpha:*:*:*:*:*:*",
              "matchCriteriaId": "49D9F075-B18A-4634-8AA1-DE1399548838",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:solr:4.0.0:beta:*:*:*:*:*:*",
              "matchCriteriaId": "0CFB9E78-22B2-4683-BD17-1600A3057FF3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:solr:4.1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "4AF6C877-D6B6-40A8-9A73-0B327898F8E2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:solr:4.2.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "1C085709-D90B-44AC-89E1-3D2779956B89",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:solr:4.2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "F36E7460-4056-4608-96BA-622FF2770DBB",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The DocumentAnalysisRequestHandler in Apache Solr before 4.3.1 does not properly use the EmptyEntityResolver, which allows remote attackers to have an unspecified impact via XML data containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.  NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-6407."
    },
    {
      "lang": "es",
      "value": "El DocumentAnalysisRequestHandler en Apache Solr anteriores a 4.3.1 no utiliza correctamente el EmptyEntityResolver, lo cual permite a atacantes remotos tener un impacto no especificado a trav\u00e9s de datos XML conteniendo una declaraci\u00f3n de entidad externa en conjunci\u00f3n con una referencia a entidad, relacionado con un problema XML External Entity (XXE). NOTA: esta vulnerabilidad existe debido a una soluci\u00f3n incompleta de CVE-2013-6407."
    }
  ],
  "evaluatorSolution": "Per: http://secunia.com/advisories/55542\n\n\"A vulnerability has been reported in Apache Solr, which can be exploited by malicious people to disclose certain sensitive information or cause a DoS (Denial of Service).....The vulnerability is reported in version 3.6.1. Other versions may also be affected.\"",
  "id": "CVE-2013-6408",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 6.4,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 4.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2013-12-07T20:55:02.697",
  "references": [
    {
      "source": "secalert@redhat.com",
      "url": "http://rhn.redhat.com/errata/RHSA-2013-1844.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://rhn.redhat.com/errata/RHSA-2014-0029.html"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/55542"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/59372"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://svn.apache.org/viewvc/lucene/dev/branches/branch_4x/solr/CHANGES.txt?view=markup"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.openwall.com/lists/oss-security/2013/11/29/2"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Patch"
      ],
      "url": "https://issues.apache.org/jira/browse/SOLR-4881"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://rhn.redhat.com/errata/RHSA-2013-1844.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://rhn.redhat.com/errata/RHSA-2014-0029.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/55542"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/59372"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://svn.apache.org/viewvc/lucene/dev/branches/branch_4x/solr/CHANGES.txt?view=markup"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.openwall.com/lists/oss-security/2013/11/29/2"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "https://issues.apache.org/jira/browse/SOLR-4881"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.