CVE-2021-33813

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2021-33813
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-33813.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2021-33813
Aliases
Downstream
Related
Published
2021-06-16T12:15:12.760Z
Modified
2026-03-15T22:21:45.104959Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

An XXE issue in SAXBuilder in JDOM through 2.0.6 allows attackers to cause a denial of service via a crafted HTTP request.

References

Affected packages

Git / github.com/apache/lucene-solr

Affected ranges

Type
GIT
Repo
https://github.com/apache/lucene-solr
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
64f3b496bfee762a9d2dbff40700f457f4464dfe
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
05c8a6f0163fe4c330e93775e8e91f3ab66a3f80
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
dbe5ed0b2f17677ca6c904ebae919363f2d36a0a
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "8.8.1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "8.9"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "8.1"
        }
    ]
}
Type
GIT
Repo
https://github.com/apache/solr
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
a4eb7aa123dc53f8dac74d80b66a490f2d6b4a26
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "9.0"
        }
    ]
}
Type
GIT
Repo
https://github.com/apache/tika
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
0090ebac8e4ff4083a9c0c5d3dc55f545ad6f951
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.25"
        }
    ]
}
Type
GIT
Repo
https://github.com/hunterhacker/jdom
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
2e946f814b5ea255c0a5f861a61f911b83bad28a
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.0.6"
        }
    ]
}

Affected versions

1.*
1.12
1.12-rc1
1.13
1.13-rc1
1.14
1.14-rc1
1.15
1.15-rc1
1.16
1.17
1.18
1.18-rc1
1.18-rc2
1.19
1.19.1
1.19.1-rc1
1.20
1.21
1.22
1.23
1.23-rc1
1.24
1.24.1
1.25
JDOM-2.*
JDOM-2.0.0
JDOM-2.0.1
JDOM-2.0.2
JDOM-2.0.3
JDOM-2.0.4
JDOM-2.0.5
JDOM-2.0.6
Other
JDOM2Beta4
JDOM2Beta5
JDOM2Beta6
grafts/lucene-oldest
grafts/lucene-solr-copy
grafts/lucene-solr-oldest-merged
grafts/solr-incubator-latest
grafts/solr-incubator-oldest
grafts/solr-latest
grafts/solr-oldest
history/branches/lucene-solr/LUCENE-5622
history/branches/lucene-solr/LUCENE2793
history/branches/lucene-solr/branch_7
history/branches/lucene-solr/cleanup2878
history/branches/lucene-solr/docvalues
history/branches/lucene-solr/jira/lucene-5438-nrt-replication
history/branches/lucene-solr/lucene-6835
history/branches/lucene-solr/lucene-6997
history/branches/lucene-solr/lucene/main
history/branches/lucene-solr/lucene2510
history/branches/lucene-solr/lucene2858
history/branches/lucene-solr/lucene3069
history/branches/lucene-solr/lucene3312
history/branches/lucene-solr/lucene3606
history/branches/lucene-solr/lucene3661
history/branches/lucene-solr/lucene3795_lsp_spatial_module
history/branches/lucene-solr/lucene3846
history/branches/lucene-solr/lucene3969
history/branches/lucene-solr/lucene4055
history/branches/lucene-solr/lucene4199
history/branches/lucene-solr/lucene4236
history/branches/lucene-solr/lucene4335
history/branches/lucene-solr/lucene4446
history/branches/lucene-solr/lucene4547
history/branches/lucene-solr/lucene4765
history/branches/lucene-solr/lucene5178
history/branches/lucene-solr/lucene5207
history/branches/lucene-solr/lucene5339
history/branches/lucene-solr/lucene539399
history/branches/lucene-solr/lucene5468
history/branches/lucene-solr/lucene5487
history/branches/lucene-solr/lucene5493
history/branches/lucene-solr/lucene5611
history/branches/lucene-solr/lucene5666
history/branches/lucene-solr/lucene5675
history/branches/lucene-solr/lucene5752
history/branches/lucene-solr/lucene5858
history/branches/lucene-solr/lucene5969
history/branches/lucene-solr/lucene5995
history/branches/lucene-solr/lucene6196
history/branches/lucene-solr/lucene6238
history/branches/lucene-solr/lucene6271
history/branches/lucene-solr/lucene6299
history/branches/lucene-solr/lucene6487
history/branches/lucene-solr/origin/branch_8_x
history/branches/lucene-solr/pforcodec_3892
history/branches/lucene-solr/pointvalues
history/branches/lucene-solr/preflexfixes
history/branches/lucene-solr/realtime_search
history/branches/lucene-solr/slowclosing
history/branches/lucene-solr/solr/main
history/branches/lucene-solr/solr2452
history/branches/lucene-solr/solr3733
history/branches/lucene-solr/solr5914
history/branches/lucene-solr/solr7787
jdom2-epoch
jdom-1.*
jdom-1.1.1
releases/lucene-solr/8.*
releases/lucene-solr/8.1.0
releases/lucene-solr/8.8.0
releases/lucene-solr/8.8.1
releases/lucene-solr/8.9.0
releases/solr/9.*
releases/solr/9.0.0

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-33813.json"
unresolved_ranges 
[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "35"
            }
        ]
    }
]