NVD

Id
47290  
Name
CVE-2012-6612  
Description
The (1) UpdateRequestHandler for XSLT or (2) XPathEntityProcessor in Apache Solr before 4.1 allows remote attackers to have an unspecified impact via XML data containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, different vectors than CVE-2013-6407.  
Reject
 
CVSS Version
2  
CVSS Score
7.5  
Severity
High  
CVSS Base Score
7.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-19  
Published
2013-12-07  
Modified Date
2014-03-08  
Seq
2012-6612  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
236433 47290 CVE-2012-6612 RHSA-2013:1844  View
236434 47290 CVE-2012-6612 RHSA-2014:0029  View
236435 47290 CVE-2012-6612 http://svn.apache.org/viewvc/lucene/dev/branches/branch_4x/solr/CHANGES.txt?view=markup  View
236436 47290 CVE-2012-6612 https://issues.apache.org/jira/browse/SOLR-3895  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
30379 JVNDB-2012-006087 Apache Solr の XSLT 用 UpdateRequestHandler または XPathEntityProcessor における脆弱性 Apache Solr の (1) XSLT 用 UpdateRequestHandler または (2) XPathEntityProcessorには、不特定の影響を受ける脆弱性が存在します。 CVE-2012-6612 59850 CVE-2012-6612 47290 7.5 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-006087.html 2012-09-27 2015-08-06 View