Lucene search
RedHatRHSA-2017:3124HistoryNov 06, 2017 - 5:44 p.m.
(RHSA-2017:3124) Moderate: Red Hat JBoss Enterprise Application Platform 7.0 security update
2017-11-0617:44:50
access.redhat.com
92
EPSS
0.974
Percentile
99.9%
Red Hat JBoss Enterprise Application Platform is a platform for Java
applications based on the JBoss Application Server.
This asynchronous patch is a security update for lucene package in Red Hat JBoss Enterprise Application Platform 7.0.8
Security Fix(es):
- It was found that Apache Lucene would accept an object from an unauthenticated user that could be manipulated through subsequent post requests. An attacker could use this flaw to assemble an object that could permit execution of arbitrary code if the server enabled Apache Solr’s Config API. (CVE-2017-12629)
For more information regarding CVE-2017-12629, see the article linked in the references section.
Related
prion
prion
Xxe
2017-10-14 23:29:00
veracode
veracode
Remote Code Execution (RCE)
2017-10-16 00:44:41
Remote Code Execution (RCE)
2019-01-15 09:19:45
nessus
nessus
Ubuntu 16.04 LTS : Apache Solr vulnerability (USN-4259-1)
2020-01-30 00:00:00
FreeBSD : solr -- Code execution via entity expansion (e837390d-0ceb-46b8-9b32-29c1195f5dc7)
2017-10-16 00:00:00
Debian DLA-1254-1 : lucene-solr security update
2018-01-22 00:00:00
debiancve
debiancve
CVE-2017-12629
2017-10-14 23:29:00
openvas
openvas
Debian: Security Advisory (DLA-1254-1)
2018-01-21 00:00:00
Ubuntu: Security Advisory (USN-4259-1)
2020-01-30 00:00:00
Fedora Update for lucene4 FEDORA-2017-f1535b86fa
2017-12-04 00:00:00
fedora
fedora
[SECURITY] Fedora 27 Update: lucene-6.1.0-6.fc27
2017-11-11 03:28:48
[SECURITY] Fedora 27 Update: lucene-6.1.0-6.fc27
2017-11-11 13:45:38
[SECURITY] Fedora 27 Update: lucene4-4.10.4-11.fc27
2017-11-29 00:01:53
osv
osv
Remote code execution occurs in Apache Solr
2018-10-17 19:56:17
CVE-2017-12629
2017-10-14 23:29:00
lucene-solr - security update
2018-01-21 00:00:00
ibm
ibm
redhat
redhat
(RHSA-2017:3452) Moderate: rh-java-common-lucene5 security update
2017-12-12 17:19:42
(RHSA-2017:3451) Moderate: rh-java-common-lucene security update
2017-12-12 17:19:20
packetstorm
packetstorm
Apache Solr 7.0.1 XXE Injection / Code Execution
2017-10-18 00:00:00
nuclei
nuclei
Apache Solr <= 7.1 - XML Entity Injection
2020-08-28 03:46:31
redhatcve
redhatcve
CVE-2017-12629
2019-10-10 21:16:07
seebug
seebug
github
github
Remote code execution occurs in Apache Solr
2018-10-17 19:56:17
debian
debian
[SECURITY] [DLA 1254-1] lucene-solr security update
2018-01-21 21:34:20
[SECURITY] [DSA 4124-1] lucene-solr security update
2018-02-27 19:38:50
freebsd
freebsd
solr -- Code execution via entity expansion
2017-10-13 00:00:00
cvelist
cvelist
CVE-2017-12629
2017-10-14 21:00:00
checkpoint_advisories
checkpoint_advisories
zdt
zdt
ubuntucve
ubuntucve
CVE-2017-12629
2017-10-14 00:00:00
ubuntu
ubuntu
Apache Solr vulnerability
2020-01-29 00:00:00
cve
cve
CVE-2017-12629
2017-10-14 23:29:00
mageia
mageia
Updated lucene packages fix security vulnerability
2017-11-06 11:22:52
f5
f5
K10631153 : Apache Solr vulnerability CVE-2017-12629
2018-03-27 00:00:00
nvd
nvd
CVE-2017-12629
2017-10-14 23:29:00
kitploit
kitploit
Vulmap - Web Vulnerability Scanning And Verification Tools
2020-12-25 11:30:00