CVE-2019-17558

🗓️ 30 Dec 2019 16:36:08Reported by apacheType

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 1315 Views🌐 WEB

CVE-2019-17558: Apache Solr 5.0.0 to 8.3.1 Remote Code Executio

Reporter	Title	Published	Views	Family All 50
0day.today	Apache Solr 8.3.0 Velocity Template Remote Code Execution Exploit	3 Apr 202000:00	–	zdt
IBM Security Bulletins	Security Bulletin: Vulnerability in Apache Solr affects IBM Operations Analytics - Log Analysis (CVE-2019-17558)	20 Apr 202106:50	–	ibm
IBM Security Bulletins	Security Bulletin: Possible remote code execution vulnerability in Watson Knowledge Catalog for IBM Cloud Pak for Data	9 Apr 202014:28	–	ibm
IBM Security Bulletins	Log Analysis Security Bulletin List	1 Sep 202111:04	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in Apache Solr (lucene) affect IBM InfoSphere Information Server	2 Sep 202023:24	–	ibm
Gitee	Exploit for Code Injection in Microsoft	27 Nov 202010:59	–	gitee
Gitee	Exploit for Improper Restriction of XML External Entity Reference in Apache Solr	7 Mar 202111:09	–	gitee
Gitee	Exploit for Code Injection in Microsoft	25 Nov 202023:04	–	gitee
Gitee	Exploit for Improper Restriction of XML External Entity Reference in Apache Solr	16 Aug 202116:49	–	gitee
Gitee	Exploit for Code Injection in Microsoft	17 Nov 202009:07	–	gitee

NVD

Vulners

Node

apache solrRange5.0.0–7.7.3

apache solrRange8.0.0–8.4.0

Node

oracle primavera_unifierRange17.7–17.12

oracle primavera_unifierMatch16.1

oracle primavera_unifierMatch16.2

oracle primavera_unifierMatch18.8

oracle primavera_unifierMatch19.12

[
  {
    "product": "Apache Solr",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Apache Solr 5.0.0 to Apache Solr 8.3.1"
      }
    ]
  }
]

Source	Link
lists	www.lists.apache.org/thread.html/r9271d030452170ba6160c022757e1b5af8a4c9ccf9e04164dec02e7f%40%3Cissues.lucene.apache.org%3E
lists	www.lists.apache.org/thread.html/r7f21ab40a9b17b1a703db84ac56773fcabacd4cc1eb5c4700d17c071%40%3Cissues.lucene.apache.org%3E
lists	www.lists.apache.org/thread.html/r25f1bd4545617f5b86dde27b4c30fec73117af65598a30e20209739a%40%3Cissues.lucene.apache.org%3E
lists	www.lists.apache.org/thread.html/r0b7b9d4113e6ec1ae1d3d0898c645f758511107ea44f0f3a1210c5d5%40%3Cissues.lucene.apache.org%3E
lists	www.lists.apache.org/thread.html/r5074d814d3a8c75df4b20e66bfd268ee0a73ddea7e85070cec3ae78d%40%3Cissues.lucene.apache.org%3E
lists	www.lists.apache.org/thread.html/r204ba2a9ea750f38d789d2bb429cc0925ad6133deea7cbc3001d96b5%40%3Csolr-user.lucene.apache.org%3E
lists	www.lists.apache.org/thread.html/r12ab2cb15a34e49b4fecb5b2bdd7e10f3e8b7bf1f4f47fcde34d3a7c%40%3Cissues.lucene.apache.org%3E
lists	www.lists.apache.org/thread.html/r36e35fd76239a381643555966fb3e72139e018d52d76544fb42f96d8%40%3Cissues.lucene.apache.org%3E
lists	www.lists.apache.org/thread.html/r7b89b3dcfc1b6c52dd8d610b897ac98408245040c92b484fe97a51a2%40%3Csolr-user.lucene.apache.org%3E
lists	www.lists.apache.org/thread.html/r58c58fe51c87bc30ee13bb8b4c83587f023edb349018705208e65b37%40%3Cissues.lucene.apache.org%3E

Parameter	Position	Path	Description	CWE
params.resource.loader.enabled	path	/solr/{core}/config	Config API used to enable Velocity resource loader leading to RCE	CWE-74
solr.resource.loader.enabled	path	/solr/{core}/config	Config API used to enable Velocity resource loader leading to RCE	CWE-74
q	query param	/solr/{core}/select	Velocity template injection via select endpoint with velocity writer	CWE-74
wt	query param	/solr/{core}/select	Velocity template injection via select endpoint with velocity writer	CWE-74
v.template	query param	/solr/{core}/select	Velocity template injection via select endpoint with velocity writer	CWE-74
v.template.custom	query param	/solr/{core}/select	Velocity template injection via select endpoint with velocity writer	CWE-74

17 Jun 2026 02:24Current

7.5High risk

Vulners AI Score7.5

CVSS 24.6

CVSS 3.17.5

EPSS0.98567

SSVC