[jira] [Updated] (SOLR-15529) High security vulnerability in JDOM library bundled within Solr 8.9 CVE-2021-33813

Cassandra Targett (Jira) Fri, 13 Aug 2021 09:32:04 -0700


     [ 
https://issues.apache.org/jira/browse/SOLR-15529?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Cassandra Targett updated SOLR-15529:
-------------------------------------
    Component/s: contrib - Solr Cell (Tika extraction)

> High security vulnerability in JDOM library bundled within Solr 8.9 
> CVE-2021-33813
> ----------------------------------------------------------------------------------
>
>                 Key: SOLR-15529
>                 URL: https://issues.apache.org/jira/browse/SOLR-15529
>             Project: Solr
>          Issue Type: Bug
>          Components: contrib - Solr Cell (Tika extraction)
>    Affects Versions: 8.9
>            Reporter: WCM RnD
>            Priority: Critical
>
> High security vulnerability has been reported in the JDOM library bundled 
> within SOLR 8.9:
>  CVE-2021-33813
> *Affected Component(s):* JDOM
> *Vulnerability Published:* 2021-06-16 08:15 EDT
> *Vulnerability Updated:* 2021-06-21 18:21 EDT
> *CVSS Score:* {color:#FF0000}7.5{color} (overall), {color:#FF0000}7.5{color} 
> (base)
> *Summary*: An XXE issue in SAXBuilder in JDOM through 2.0.6 allows attackers 
> to cause a denial of service via a crafted HTTP request.
>  



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[jira] [Updated] (SOLR-15529) High security vulnerability in JDOM library bundled within Solr 8.9 CVE-2021-33813

Reply via email to