CVE-2023-50298: Apache Solr: Solr can expose ZooKeeper credentials via Streaming Expressions

CVE-2023-50298: Apache Solr: Solr can expose ZooKeeper credentials via Streaming Expressions

Open Source Security [[{„value“:“

Posted by Houston Putman on Feb 09

Severity: low

Affected versions:

– Apache Solr 6.0.0 through 8.11.2
– Apache Solr 9.0.0 before 9.4.1

Description:

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Solr.This issue affects Apache Solr:
from 6.0.0 through 8.11.2, from 9.0.0 before 9.4.1.

Solr Streaming Expressions allows users to extract data from other Solr Clouds, using a „zkHost“ parameter.
When original SolrCloud is setup to use…
„}]] Read More 

Schreibe einen Kommentar

Deine E-Mail-Adresse wird nicht veröffentlicht. Erforderliche Felder sind mit * markiert