Security Bulletin: IBM Operational Decision Manager - Multiple CVEs addressed related to Solr Core

Summary IBM Operational Decision Manager is vulnerable to multiple remote code execution and denial of service attacks in third party and open source used in the product for various functions. See full list below. The vulnerabilities have been addressed Vulnerability Details CVEID:CVE-2024-45217...

Files or Directories Accessible to External Parties

Overview org.apache.solr:solr-core is an open source enterprise search platform built on Apache Lucene Affected versions of this package are vulnerable to Files or Directories Accessible to External Parties in the AllowPathBuilder behavior accessible via the create core API. An attacker can read...

Missing Authorization

Overview org.apache.solr:solr-core is an open source enterprise search platform built on Apache Lucene Affected versions of this package are vulnerable to Missing Authorization in the Rule Based Authorization Plugin, by which the getPermissionName function can be forced to return null. An attacke...

EUVD-2026-3665

The "create core" API of Apache Solr 8.6 through 9.10.0 lacks sufficient input validation on some API parameters, which can cause Solr to check the existence of and attempt to read file-system paths that should be disallowed by Solr's "allowPaths" security setting...

XML Entity Expansion (XEE)

org.apache.solr, solr-core is vulnerable to an XML Entity Expansion XEE. The vulnerability is due to XML resource consumption caused by the use of XML DOCTYPE and ENTITY declarations, which allows an attacker to trigger excessive memory usage during XML parsing, leading to out-of-memory errors...

Insecure Access Control

solr-core is vulnerable to Insecure Access Control. A node that is configured with the optional read-only user, and with SaslZkACLProvider or VMParamsAllAndReadonlyDigestZkACLProvider and no existing security.json znode, would not be treated as a sensitive path and would allow it to be readable...

Insecure Access Controls

solr-core uses insecure access controls. When using ConfigurableInternodeAuthHadoopPlugin for authentication, requests using server credentials instead of original client credentials would forward/proxy distributed. This would result in incorrect authorization resolution on the receiving hosts...

Authentication Bypass

solr-core is vulnerable to Authentication Bypass. The vulnerability exists through the create ConfigSetOperation where features can be uploaded through API without authentication...

GHSA-7PX3-6F6G-HXCJ XML external entity expansion in org.apache.solr:solr-core

This vulnerability in Apache Solr 6.0.0 to 6.6.4 and 7.0.0 to 7.3.1 relates to an XML external entity expansion XXE in Solr config files currency.xml, enumsConfig.xml referred from schema.xml, TIKA parsecontext config file. In addition, Xinclude functionality provided in these config files is als...

Information Disclosure

solr-core is vulnerable to information disclosure. The vulnerability is possible because it does not protect the credentials from security.json when it is being retrieved on Zookeepr API and admin level...

Important: Red Hat Security Advisory: Red Hat JBoss Web Framework Kit 2.4.0 update

An update for the solr-core component of Red Hat JBoss Web Framework Kit 2.4.0 that fixes multiple security issues is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System...