Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
Security Advisories: GSA_kwCzR0hTQS03bTdnLWpxNG0tOTh3Nc4AAe6O
Apache Solr for TYPO3 (solr) extension is vulnerable to Insecure Unserialize
Unspecified vulnerability in the Apache Solr for TYPO3 (solr) extension before 2.8.3 for TYPO3 has unknown impact and remote attack vectors, related to "Insecure Unserialize."
Permalink: https://github.com/advisories/GHSA-7m7g-jq4m-98w5JSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS03bTdnLWpxNG0tOTh3Nc4AAe6O
Source: GitHub Advisory Database
Origin: Unspecified
Severity: Critical
Classification: General
Published: over 2 years ago
Updated: over 1 year ago
CVSS Score: 9.8
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Percentage: 0.00308
EPSS Percentile: 0.70645
Identifiers: GHSA-7m7g-jq4m-98w5, CVE-2013-6288
References:
- https://nvd.nist.gov/vuln/detail/CVE-2013-6288
- http://secunia.com/advisories/54978
- http://typo3.org/extensions/repository/view/solr
- http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-009/
- http://www.securityfocus.com/bid/62674
- https://github.com/TYPO3-Solr/ext-solr/blob/2.8.3/ChangeLog
- https://github.com/advisories/GHSA-7m7g-jq4m-98w5
Blast Radius: 14.8
Affected Packages
packagist:apache-solr-for-typo3/solr
Dependent packages: 22Dependent repositories: 32
Downloads: 2,235,711 total
Affected Version Ranges: < 2.8.3
Fixed in: 2.8.3
All affected versions:
All unaffected versions: 3.1.0, 3.1.1, 3.1.2, 4.0.0, 4.0.1, 4.0.2, 5.0.0, 5.1.0, 5.1.1, 6.0.0, 6.0.1, 6.1.0, 6.1.1, 6.1.2, 6.1.3, 6.5.0, 6.5.1, 7.0.0, 7.0.1, 7.0.2, 7.5.0, 7.5.1, 7.5.2, 7.5.3, 8.0.0, 8.0.1, 8.0.2, 8.0.3, 8.1.0, 8.1.1, 8.1.2, 9.0.0, 9.0.1, 9.0.2, 9.0.3, 10.0.0, 10.0.1, 10.0.2, 10.0.3, 10.0.4, 10.0.5, 11.0.0, 11.0.1, 11.0.2, 11.0.3, 11.0.4, 11.0.5, 11.0.6, 11.0.7, 11.1.0, 11.1.1, 11.1.2, 11.1.3, 11.2.0, 11.2.1, 11.2.2, 11.2.3, 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.5.4, 11.5.5, 11.5.6, 11.5.7, 11.6.0, 12.0.0, 12.0.1, 12.0.2, 12.0.3, 12.0.4, 12.0.5