WCM RnD created SOLR-15530:
------------------------------
Summary: High security vulnerability in jackson-databind bundled
within Solr 8.9
Key: SOLR-15530
URL: https://issues.apache.org/jira/browse/SOLR-15530
Project: Solr
Issue Type: Bug
Affects Versions: 8.9
Reporter: WCM RnD
High security vulnerability has been reported in the JDOM library bundled
within SOLR 8.9:
CVE-2021-33813
*Affected Component(s):* JDOM
*Vulnerability Published:* 2021-06-16 08:15 EDT
*Vulnerability Updated:* 2021-06-21 18:21 EDT
*CVSS Score:* {color:#FF0000}7.5{color} (overall), {color:#FF0000}7.5{color}
(base)
*Summary*: An XXE issue in SAXBuilder in JDOM through 2.0.6 allows attackers to
cause a denial of service via a crafted HTTP request.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
