Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

Security Advisories: GSA_kwCzR0hTQS03bTdnLWpxNG0tOTh3Nc4AAe6O

Apache Solr for TYPO3 (solr) extension is vulnerable to Insecure Unserialize

Unspecified vulnerability in the Apache Solr for TYPO3 (solr) extension before 2.8.3 for TYPO3 has unknown impact and remote attack vectors, related to "Insecure Unserialize."

Permalink: https://github.com/advisories/GHSA-7m7g-jq4m-98w5
JSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS03bTdnLWpxNG0tOTh3Nc4AAe6O
Source: GitHub Advisory Database
Origin: Unspecified
Severity: Critical
Classification: General
Published: over 2 years ago
Updated: over 1 year ago


CVSS Score: 9.8
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Percentage: 0.00308
EPSS Percentile: 0.70645

Identifiers: GHSA-7m7g-jq4m-98w5, CVE-2013-6288
References: Repository: https://github.com/TYPO3-Solr/ext-solr
Blast Radius: 14.8

Affected Packages

packagist:apache-solr-for-typo3/solr
Dependent packages: 22
Dependent repositories: 32
Downloads: 2,235,711 total
Affected Version Ranges: < 2.8.3
Fixed in: 2.8.3
All affected versions:
All unaffected versions: 3.1.0, 3.1.1, 3.1.2, 4.0.0, 4.0.1, 4.0.2, 5.0.0, 5.1.0, 5.1.1, 6.0.0, 6.0.1, 6.1.0, 6.1.1, 6.1.2, 6.1.3, 6.5.0, 6.5.1, 7.0.0, 7.0.1, 7.0.2, 7.5.0, 7.5.1, 7.5.2, 7.5.3, 8.0.0, 8.0.1, 8.0.2, 8.0.3, 8.1.0, 8.1.1, 8.1.2, 9.0.0, 9.0.1, 9.0.2, 9.0.3, 10.0.0, 10.0.1, 10.0.2, 10.0.3, 10.0.4, 10.0.5, 11.0.0, 11.0.1, 11.0.2, 11.0.3, 11.0.4, 11.0.5, 11.0.6, 11.0.7, 11.1.0, 11.1.1, 11.1.2, 11.1.3, 11.2.0, 11.2.1, 11.2.2, 11.2.3, 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.5.4, 11.5.5, 11.5.6, 11.5.7, 11.6.0, 12.0.0, 12.0.1, 12.0.2, 12.0.3, 12.0.4, 12.0.5