Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2018-11802
HistoryApr 01, 2020 - 10:15 p.m.

CVE-2018-11802

2020-04-0122:15:15
Google
osv.dev
4

AI Score

6.5

Confidence

Low

EPSS

0.001

Percentile

29.0%

JSON

In Apache Solr, the cluster can be partitioned into multiple collections and only a subset of nodes actually host any given collection. However, if a node receives a request for a collection it does not host, it proxies the request to a relevant node and serves the request. Solr bypasses all authorization settings for such requests. This affects all Solr versions prior to 7.7 that use the default authorization mechanism of Solr (RuleBasedAuthorizationPlugin).

Related

github 1
osv 1
ibm 1
prion 1
cvelist 1
debiancve 1
veracode 1
ubuntucve 1
redhatcve 1
cve 1
nvd 1
github
github
Incorrect Authorization in Apache Solr
2022-02-09 23:19:26
osv
osv
Incorrect Authorization in Apache Solr
2022-02-09 23:19:26
ibm
ibm
Security Bulletin: Apache Solr vulnerability affects IBM Operations Analytics - Log Analysis (CVE-2018-11802)
2020-06-30 12:02:40
prion
prion
Authorization
2020-04-01 22:15:00
cvelist
cvelist
CVE-2018-11802
2020-04-01 21:11:38
debiancve
debiancve
CVE-2018-11802
2020-04-01 22:15:15
veracode
veracode
Authorization Bypass
2019-04-25 07:09:40
ubuntucve
ubuntucve
CVE-2018-11802
2020-04-01 00:00:00
redhatcve
redhatcve
CVE-2018-11802
2019-05-07 19:03:51
cve
cve
CVE-2018-11802
2020-04-01 22:15:15
nvd
nvd
CVE-2018-11802
2020-04-01 22:15:15

AI Score

6.5

Confidence

Low

EPSS

0.001

Percentile

29.0%

JSON
Related for OSV:CVE-2018-11802
github1osv1ibm1prion1cvelist1debiancve1veracode1ubuntucve1redhatcve1cve1nvd1