VulnerableCode Vulnerability Details

Search for vulnerabilities

Vulnerability details: VCID-6jkd-b9sn-aaak

Essentials
Severities (93)
References (21)
Severity details (8)
Exploits (0)
EPSS
History (0)

Vulnerability ID	VCID-6jkd-b9sn-aaak
Aliases	CVE-2017-9803 GHSA-f553-j2gv-g5r9
Summary	Privilege escalation Solr's Kerberos plugin can be configured to use delegation tokens, which allows an application to reuse the authentication of an end-user or another application. There are two issues with this functionality (when using `SecurityAwareZkACLProvider` type of ACL provider e.g. `SaslZkACLProvider`). Firstly, access to the security configuration can be leaked to users other than the solr super user. Secondly, malicious users can exploit this leaked configuration for privilege escalation to further expose/modify private data and/or disrupt operations in the Solr cluster.
Status	Published
Exploitability	0.5
Weighted Severity	8.0
Risk	4.0
Affected and Fixed Packages	Package Details

Weaknesses (3)

CWE-287	Improper Authentication
CWE-1035	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
CWE-937	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities

System	Score	Found at
cvssv3	8.1	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9803.json
epss	0.00059	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00059	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00059	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00059	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00059	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00059	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00059	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00059	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00059	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00059	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00059	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00059	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00082	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00082	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00082	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00082	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.00342	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.0036	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.0036	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.0036	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.0036	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
epss	0.01386	https://api.first.org/data/v1/epss?cve=CVE-2017-9803
rhbs	high	https://bugzilla.redhat.com/show_bug.cgi?id=1493507
cvssv3.1_qr	HIGH	https://github.com/advisories/GHSA-f553-j2gv-g5r9
cvssv3.1	7.5	https://issues.apache.org/jira/browse/SOLR-11184
generic_textual	HIGH	https://issues.apache.org/jira/browse/SOLR-11184
cvssv3.1	7.5	https://lists.apache.org/thread/f4rbt657n9x4kb74k1txhcojof5dzol5
generic_textual	HIGH	https://lists.apache.org/thread/f4rbt657n9x4kb74k1txhcojof5dzol5
cvssv2	6.0	https://nvd.nist.gov/vuln/detail/CVE-2017-9803
cvssv3	7.5	https://nvd.nist.gov/vuln/detail/CVE-2017-9803

Reference id	Reference type	URL
		http://mail-archives.us.apache.org/mod_mbox/www-announce/201709.mbox/%3CCAOOKt53AOScg04zUh0%2BR_fcXD0C9s5mQ-OzdgYdnHz49u1KmXw%40mail.gmail.com%3E
		http://mail-archives.us.apache.org/mod_mbox/www-announce/201709.mbox/%3CCAOOKt53AOScg04zUh0%2BR_fcXD0C9s5mQ-OzdgYdnHz49u1KmXw@mail.gmail.com%3E
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9803.json
		https://api.first.org/data/v1/epss?cve=CVE-2017-9803
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9803
		https://github.com/apache/lucene-solr/commit/b091934f9e98568b848d0584a1145c8e514cbd21
		https://issues.apache.org/jira/browse/SOLR-11184
		https://lists.apache.org/thread/f4rbt657n9x4kb74k1txhcojof5dzol5
		http://www.securityfocus.com/bid/100870
1493507		https://bugzilla.redhat.com/show_bug.cgi?id=1493507
cpe:2.3:a:apache:solr:6.2.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:solr:6.2.0:::::::*
cpe:2.3:a:apache:solr:6.2.1:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:solr:6.2.1:::::::*
cpe:2.3:a:apache:solr:6.3.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:solr:6.3.0:::::::*
cpe:2.3:a:apache:solr:6.4.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:solr:6.4.0:::::::*
cpe:2.3:a:apache:solr:6.4.1:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:solr:6.4.1:::::::*
cpe:2.3:a:apache:solr:6.4.2:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:solr:6.4.2:::::::*
cpe:2.3:a:apache:solr:6.5.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:solr:6.5.0:::::::*
cpe:2.3:a:apache:solr:6.5.1:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:solr:6.5.1:::::::*
cpe:2.3:a:apache:solr:6.6.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:solr:6.6.0:::::::*
CVE-2017-9803		https://nvd.nist.gov/vuln/detail/CVE-2017-9803
GHSA-f553-j2gv-g5r9		https://github.com/advisories/GHSA-f553-j2gv-g5r9

No exploits are available.

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9803.json

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Found at https://issues.apache.org/jira/browse/SOLR-11184

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Found at https://lists.apache.org/thread/f4rbt657n9x4kb74k1txhcojof5dzol5

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: AV:N/AC:M/Au:S/C:P/I:P/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2017-9803

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Exploitability (E)

Access Vector (AV)

Access Complexity (AC)

Authentication (Au)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

partial

complete

none

partial

complete

none

partial

complete

Vector: CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2017-9803

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Exploit Prediction Scoring System (EPSS)

Percentile	0.26226
EPSS Score	0.00059
Published At	Nov. 1, 2024, midnight

Date	Actor	Action	Source	VulnerableCode Version
There are no relevant records.