Severity
High
Analysis Summary
CVE-2023-50291 CVSS:6.5
Apache Solr could allow a remote authenticated attacker to obtain sensitive information, caused by system property redaction logic inconsistencies. By using the /admin/info/properties endpoint, an attacker could exploit his vulnerability to leak certain passwords.
CVE-2023-50292 CVSS:7.3
Apache Solr could allow a remote attacker to execute arbitrary code on the system, caused by the Schema Designer blindly trusting all configsets. An attacker could exploit his vulnerability to execute arbitrary code on the system.
CVE-2023-50298 CVSS:7.5
Apache Solr could allow a remote attacker to obtain sensitive information, caused by an exposure of sensitive information to an unauthorized actor vulnerability. By using Streaming Expressions, an attacker could exploit his vulnerability to extract data from other Solr Clouds using a zkHost parameter and expose ZooKeeper credentials.
CVE-2023-50386 CVSS:7.3
Apache Solr could allow a remote attacker to upload arbitrary files, caused by the improper control of dynamically-managed code resources. By using Backup/Restore APIs, a remote attacker could exploit this vulnerability to upload a malicious file, which could allow the attacker to execute arbitrary code on the vulnerable system.
Impact
- Gain Access
- Information Disclosure
Indicators Of Compromise
CVE
- CVE-2023-50291
- CVE-2023-50292
- CVE-2023-50298
- CVE-2023-50386
Affected Vendors
Apache
Affected Products
- Apache Solr 9.0.0
- Apache Solr 9.2.1
Remediation
Refer to Apache Website for patch, upgrade, or suggested workaround information.