7 matches found
bluewateradvisory.com Improper Access Control vulnerability OBB-3794421
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
K23720587: Apache Solr vulnerability CVE-2019-12409
Security Advisory Description The 8.1.1 and 8.2.0 releases of Apache Solr contain an insecure setting for the ENABLEREMOTEJMXOPTS configuration option in the default solr.in.sh configuration file shipping with Solr. If you use the default solr.in.sh file from the affected releases, then JMX...
Apache Solr 8.1.1 < 8.3.0 Remote Code Execution
CVE-2019-12409 is a flaw in the default configuration of the solr.in.sh file in Apache Solr. If this file is used in its default configuration in versions 8.1.1 and 8.2.0, unauthenticated access to the Java Management Extensions JMX monitoring on the RMIPORT default 18983 is allowed. Anyone with...
Apache Solr 8.1.1 / 8.2.0 Remote Code Execution Vulnerability
The version of Apache Solr running on the remote web server is affected by a remote code vulnerability as referenced in the advisory. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid131167; scriptversion"1.3"; scriptsetattributeattribute:"pluginmodificationdate",...
Apache Solr Bug Gets Bumped Up to High Severity
A bug impacting the Linux enterprise-search platform called Apache Solr has been revised from low to high-severity after researchers discovered a new remote code execution exploit. The warning comes from Tenable, which is reporting that the newly-identified default configuration vulnerability cou...
Exploit for Unrestricted Upload of File with Dangerous Type in Apache Solr
CVE-2019-12409 Apache Solr RCE...
CVE-2019-12409
CVE-2019-12409 affects Apache Solr 8.1.1 and 8.2.0 where the default solr.in.sh enables ENABLE_REMOTE_JMX_OPTS, exposing JMX on RMI_PORT 18983 without authentication. Unauthenticated network access to JMX can allow uploading and execution of malicious code on the Solr server. Public exploitation ...