CVE-2023-50292: Apache Solr: Solr Schema Designer blindly „trusts“ all configsets, possibly leading to RCE by unauthenticated users

CVE-2023-50292: Apache Solr: Solr Schema Designer blindly „trusts“ all configsets, possibly leading to RCE by unauthenticated users

Open Source Security [[{„value“:“

Posted by Houston Putman on Feb 09

Severity: critical

Affected versions:

– Apache Solr 8.10.0 through 8.11.2
– Apache Solr 9.0.0 before 9.3.0

Description:

Incorrect Permission Assignment for Critical Resource, Improper Control of Dynamically-Managed Code Resources
vulnerability in Apache Solr.

This issue affects Apache Solr: from 8.10.0 through 8.11.2, from 9.0.0 before 9.3.0.

The Schema Designer was introduced to allow users to more easily configure and test new Schemas…
„}]] Read More 

Schreibe einen Kommentar

Deine E-Mail-Adresse wird nicht veröffentlicht. Erforderliche Felder sind mit * markiert