CVE-2021-33813

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2021-33813
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-33813.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2021-33813
Aliases
Downstream
Related
Published
2021-06-16T12:15:12.760Z
Modified
2026-04-11T12:36:34.890280Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

An XXE issue in SAXBuilder in JDOM through 2.0.6 allows attackers to cause a denial of service via a crafted HTTP request.

Database specific 
{
    "unresolved_ranges": [
        {
            "source": "CPE_FIELD",
            "cpe": "cpe:2.3:a:jdom:jdom:*:*:*:*:*:*:*:*",
            "extracted_events": [
                {
                    "last_affected": "2.0.6"
                }
            ]
        },
        {
            "source": "CPE_FIELD",
            "cpe": "cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*",
            "extracted_events": [
                {
                    "last_affected": "35"
                }
            ]
        }
    ]
}
References

Affected packages

Git / github.com/apache/lucene-solr

Affected ranges

Type
GIT
Repo
https://github.com/apache/lucene-solr
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
64f3b496bfee762a9d2dbff40700f457f4464dfe
Last affected
05c8a6f0163fe4c330e93775e8e91f3ab66a3f80
Last affected
dbe5ed0b2f17677ca6c904ebae919363f2d36a0a
Database specific 
{
    "source": "CPE_FIELD",
    "cpe": [
        "cpe:2.3:a:apache:solr:8.8.1:*:*:*:*:*:*:*",
        "cpe:2.3:a:apache:solr:8.9:*:*:*:*:*:*:*",
        "cpe:2.3:o:oracle:communications_messaging_server:8.1:*:*:*:*:*:*:*"
    ],
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "8.8.1"
        },
        {
            "last_affected": "8.9"
        },
        {
            "last_affected": "8.1"
        }
    ]
}

Affected versions

Other
grafts/lucene-oldest
grafts/lucene-solr-copy
grafts/lucene-solr-oldest-merged
history/branches/lucene-solr/lucene-6997
releases/lucene-solr/8.*
releases/lucene-solr/8.1.0
releases/lucene-solr/8.8.0
releases/lucene-solr/8.8.1
releases/lucene-solr/8.9.0

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-33813.json"

Git / github.com/apache/solr

Affected ranges

Type
GIT
Repo
https://github.com/apache/solr
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
a4eb7aa123dc53f8dac74d80b66a490f2d6b4a26
Database specific 
{
    "source": "CPE_FIELD",
    "cpe": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "9.0"
        }
    ]
}

Affected versions

Other
grafts/lucene-oldest
grafts/lucene-solr-copy
grafts/lucene-solr-oldest-merged
history/branches/lucene-solr/branch_7
history/branches/lucene-solr/lucene-6997
history/branches/lucene-solr/lucene/main
history/branches/lucene-solr/origin/branch_8_x
history/branches/lucene-solr/pointvalues
history/branches/lucene-solr/solr/main
releases/solr/9.*
releases/solr/9.0.0

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-33813.json"

Git / github.com/apache/tika

Affected ranges

Type
GIT
Repo
https://github.com/apache/tika
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
0090ebac8e4ff4083a9c0c5d3dc55f545ad6f951
Database specific 
{
    "source": "CPE_FIELD",
    "cpe": "cpe:2.3:a:apache:tika:1.25:*:*:*:*:*:*:*",
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.25"
        }
    ]
}

Affected versions

1.*
1.12
1.12-rc1
1.15-rc1
1.17
1.18-rc1
1.19.1
1.19.1-rc1
1.20
1.21
1.23
1.23-rc1
1.24.1
1.25

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-33813.json"