Insufficiently Protected Credentials vulnerability in Apache Solr
CVE-2023-50291

7.5HIGH

Key Information:

Vendor: Apache
Status: Apache Solr
Vendor: CVE Published:; 9 February 2024

Summary

A vulnerability in Apache Solr allows sensitive system properties to be exposed via the '/admin/info/properties' endpoint. This endpoint, which is intended to display Java system properties, is only designed to hide properties containing 'password' in their names. As a result, other sensitive properties, such as 'basicauth' and 'aws.secretKey', remain visible in the Solr Admin UI, potentially unauthorized access to crucial credentials. This affects users with 'config-read' permission in Solr Clouds with Authorization enabled. To mitigate the risk, users are advised to upgrade to Apache Solr versions 9.3.0 or 8.11.3 or apply specific Java system properties to enhance security.

Affected Version(s)

Apache Solr 6.0.0 <= 8.11.2

Apache Solr 9.0.0 < 9.3.0

References

https://solr.apache.org/security.html#cve-2023-50291-apac...

vendor-advisory

http://www.openwall.com/lists/oss-security/2024/02/09/4

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 9, 2024
Vulnerability Reserved
Dec 6, 2023

Collectors

NVD DatabaseMitre Database

Credit

Michael Taggart