Apache Struts2 S2-062 Remote Code Execution Vulnerability CVE-2021-31805 Vulnerability Description This vulnerability is caused by incomplete repair of CVE-2020-17530. The CVE-2020-17530 vulnerab...

Apache Spark unTarUsingTar command injection vulnerability SPARK-38631 Vulnerability Description Apache Spark is a distributed open source processing system for big data workloads. Vulnerability...

Apache Spark doAs remote command execution vulnerability CVE-2022-33891 Vulnerability Description Apache Spark supports starting ACLs to provide authentication for Web UI access, and when ACLs st...

Apache Spark create Unauthorized access vulnerability Vulnerability Description Apache Spark is a cluster computing system that supports users to submit applications to management nodes and distr...

Apache Solr config Arbitrary file reading vulnerability Vulnerability Description Apache Solr has an arbitrary file reading vulnerability, and an attacker can obtain sensitive files of the target...

Apache Solr XXE Vulnerability CVE-2017-12629 Vulnerability Description Apache Solr is an open source search server. Affect Version Apache Solr < 7.1 Apache Lucene < 7.1 Environment const...

Apache Solr Velocity template remote execution CVE-2019-17558 Vulnerability Description At the end of October 2019, security researcher S00pY in GitHub code released an Apache Solr Velocity templa...

Apache Solr RCE Unauthorized Upload Vulnerability CVE-2020-13957 Vulnerability Description In a specific Solr version, the ConfigSet API has an unauthorized upload vulnerability, which can be exp...

Apache Solr RCE Remote Command Execution Vulnerability CVE-2017-12629 Vulnerability Description Apache Solr is an open source search server. Affect Version Apache Solr < 7.1 Environment const...

Apache Solr Log4j component Remote command execution vulnerability Vulnerability Description Apache Solr Log4j component Remote command execution vulnerability, details are omitted Vulnerability...