[ https://issues.apache.org/jira/browse/SOLR-15529?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Cassandra Targett resolved SOLR-15529. -------------------------------------- Resolution: Not A Problem Updated the wiki page with information about JDOM so resolving this. > High security vulnerability in JDOM library bundled within Solr 8.9 > CVE-2021-33813 > ---------------------------------------------------------------------------------- > > Key: SOLR-15529 > URL: https://issues.apache.org/jira/browse/SOLR-15529 > Project: Solr > Issue Type: Bug > Components: contrib - Solr Cell (Tika extraction) > Affects Versions: 8.9 > Reporter: WCM RnD > Priority: Critical > > High security vulnerability has been reported in the JDOM library bundled > within SOLR 8.9: > CVE-2021-33813 > *Affected Component(s):* JDOM > *Vulnerability Published:* 2021-06-16 08:15 EDT > *Vulnerability Updated:* 2021-06-21 18:21 EDT > *CVSS Score:* {color:#FF0000}7.5{color} (overall), {color:#FF0000}7.5{color} > (base) > *Summary*: An XXE issue in SAXBuilder in JDOM through 2.0.6 allows attackers > to cause a denial of service via a crafted HTTP request. > -- This message was sent by Atlassian Jira (v8.3.4#803005) --------------------------------------------------------------------- To unsubscribe, e-mail: issues-unsubscr...@solr.apache.org For additional commands, e-mail: issues-h...@solr.apache.org