There is a missing authorization vulnerability in the Apache Solr service that is distributed as part of Watson Knowledge Catalog for IBM Cloud Pak for Data. The issue is now addressed.
CVEID:CVE-2020-13957
**DESCRIPTION:**Apache Solr could allow a remote attacker to bypass security restrictions, caused by improper access control by the Configsets API. By using a combination of UPLOAD/CREATE actions, an attacker could exploit this vulnerability to bypass the checking mechanism for features considered as dangerous.
CVSS Base score: 9.4
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/189644 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L)
Affected Product(s) | Version(s) |
---|---|
Watson Knowledge Catalog for IBM Cloud Pak for Data | 3.0 |
Watson Knowledge Catalog for IBM Cloud Pak for Data | 2.5 |
Watson Knowledge Catalog for IBM Cloud Pak for Data 2.5: install WKC patch 11: <https://www.ibm.com/support/pages/node/5693666#%23250>
Watson Knowledge Catalog for IBM Cloud Pak for Data 3.0: install WKC patch 6: <https://www.ibm.com/support/pages/node/5693666#%23301>
The Apache Solr service is not exposed outside of the OpenShift cluster hosting Cloud Pak for Data which is limiting the ability to exploit this vulnerability.