oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

CVE-2024-45216: Apache Solr: Authentication bypass possible using a fake URL Path ending

From: Houston Putman <houston () apache org>
Date: Tue, 15 Oct 2024 23:01:06 +0000
Severity: critical

Affected versions:

- Apache Solr 5.3.0 before 8.11.4
- Apache Solr 9.0.0 before 9.7.0

Description:

Improper Authentication vulnerability in Apache Solr.

Solr instances using the PKIAuthenticationPlugin, which is enabled by default when Solr Authentication is used, are 
vulnerable to Authentication bypass.
A fake ending at the end of any Solr API URL path, will allow requests to skip Authentication while maintaining the API 
contract with the original URL Path.
This fake ending looks like an unprotected API path, however it is stripped off internally after authentication but 
before API routing.


This issue affects Apache Solr: from 5.3.0 before 8.11.4, from 9.0.0 before 9.7.0.

Users are recommended to upgrade to version 9.7.0, or 8.11.4, which fix the issue.

This issue is being tracked as SOLR-17417 

Credit:

Liu Huajin (reporter)

References:

https://solr.apache.org/security.html#cve-2024-45216-apache-solr-authentication-bypass-possible-using-a-fake-url-path-ending
https://solr.apache.org
https://www.cve.org/CVERecord?id=CVE-2024-45216
https://issues.apache.org/jira/browse/SOLR-17417
Previous By Date Next
Previous By Thread Next

Current thread: