A flaw was found in Solr. The Replication handler allows commands backup, restore, and delete backup that take non-validated allocation parameters which may result in the exfiltration of sensitive data such as OS user hashes (NTLM/LMhashes). The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
bugzilla.redhat.com/show_bug.cgi?id=1869167
github.com/apache/lucene-solr/commit/936b9d770e769c9018a9f408d576f52e7c4e8be2
issues.apache.org/jira/browse/SOLR-14561
lucene.apache.org/solr/guide/8_6/index-replication.html#http-api-commands-for-the-replicationhandler
nvd.nist.gov/vuln/detail/CVE-2020-13941
www.cve.org/CVERecord?id=CVE-2020-13941
www.openwall.com/lists/oss-security/2020/08/15/1