Oval Definition:oval:com.ubuntu.artful:def:20181308000
Revision Date:2018-04-09Version:1
Title:CVE-2018-1308 on Ubuntu 17.10 (artful) - medium.
Description:This vulnerability in Apache Solr 1.2 to 6.6.2 and 7.0.0 to 7.2.1 relates to an XML external entity expansion (XXE) in the `&dataConfig=` parameter of Solr's DataImportHandler. It can be used as XXE using file/ftp/http protocols in order to read arbitrary local files from the Solr server or the internal network.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2018-1308
Platform(s):Ubuntu 17.10
Product(s):
Definition Synopsis
  • Ubuntu 17.10 (artful) is installed.
  • AND The 'lucene-solr' package in artful was vulnerable but has been fixed (note: '3.6.2+dfsg-10+deb9u2build0.17.10.1').
  • BACK