Количество 4
Количество 4
CVE-2017-3164
Server Side Request Forgery in Apache Solr, versions 1.3 until 7.6 (inclusive). Since the "shards" parameter does not have a corresponding whitelist mechanism, a remote attacker with access to the server could make Solr perform an HTTP GET request to any reachable URL.
CVE-2017-3164
Server Side Request Forgery in Apache Solr, versions 1.3 until 7.6 (inclusive). Since the "shards" parameter does not have a corresponding whitelist mechanism, a remote attacker with access to the server could make Solr perform an HTTP GET request to any reachable URL.
CVE-2017-3164
Server Side Request Forgery in Apache Solr, versions 1.3 until 7.6 (in ...
GHSA-vrh8-27q8-fr8f
Server-Side Request Forgery (SSRF) in org.apache.solr:solr-core
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2017-3164 Server Side Request Forgery in Apache Solr, versions 1.3 until 7.6 (inclusive). Since the "shards" parameter does not have a corresponding whitelist mechanism, a remote attacker with access to the server could make Solr perform an HTTP GET request to any reachable URL. | CVSS3: 7.5 | 61% Средний | почти 7 лет назад |
 | CVE-2017-3164 Server Side Request Forgery in Apache Solr, versions 1.3 until 7.6 (inclusive). Since the "shards" parameter does not have a corresponding whitelist mechanism, a remote attacker with access to the server could make Solr perform an HTTP GET request to any reachable URL. | CVSS3: 7.5 | 61% Средний | почти 7 лет назад |
| CVE-2017-3164 Server Side Request Forgery in Apache Solr, versions 1.3 until 7.6 (in ... | CVSS3: 7.5 | 61% Средний | почти 7 лет назад |
| GHSA-vrh8-27q8-fr8f Server-Side Request Forgery (SSRF) in org.apache.solr:solr-core | CVSS3: 7.5 | 61% Средний | почти 7 лет назад |
Уязвимостей на страницу