Lucene search

[email protected]CVE-2019-12409

HistoryNov 18, 2019 - 9:15 p.m.

CVE-2019-12409

2019-11-1821:15:11

CWE-434

[email protected]

web.nvd.nist.gov

135

cve-2019-12409

apache solr

insecure setting

jmx monitoring

rmi_port

firewall

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.3 High

AI Score

Confidence

High

0.055 Low

EPSS

Percentile

93.3%

JSON

The 8.1.1 and 8.2.0 releases of Apache Solr contain an insecure setting for the ENABLE_REMOTE_JMX_OPTS configuration option in the default solr.in.sh configuration file shipping with Solr. If you use the default solr.in.sh file from the affected releases, then JMX monitoring will be enabled and exposed on RMI_PORT (default=18983), without any authentication. If this port is opened for inbound traffic in your firewall, then anyone with network access to your Solr nodes will be able to access JMX, which may in turn allow them to upload malicious code for execution on the Solr server.

Affected configurations

NVD

Node

apachesolrMatch8.1.1

apachesolrMatch8.2.0

AND

linuxlinux_kernelMatch-

CPENameOperatorVersion
apache:solrapache solreq8.1.1
apache:solrapache solreq8.2.0

CPE	Name	Operator	Version
apache:solr	apache solr	eq	8.1.1
apache:solr	apache solr	eq	8.2.0

CNA Affected

[
  {
    "product": "Solr",
    "vendor": "Apache",
    "versions": [
      {
        "status": "affected",
        "version": "8.1.1 and 8.2.0 for Linux"
      }
    ]
  }
]