CVE-2018-11802Incorrect Authorization in Apache Solr

CWE-863Incorrect AuthorizationCWE-200Sensitive Information Exposure9 documents7 sources
Severity
4.3MEDIUMNVD
EPSS
0.2%
top 64.33%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Apache SolrApache Solr
Timeline
PublishedApr 1
Latest updateFeb 9

Description

In Apache Solr, the cluster can be partitioned into multiple collections and only a subset of nodes actually host any given collection. However, if a node receives a request for a collection it does not host, it proxies the request to a relevant node and serves the request. Solr bypasses all authorization settings for such requests. This affects all Solr versions prior to 7.7 that use the default authorization mechanism of Solr (RuleBasedAuthorizationPlugin).

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages2 packages

NVDapache/solr7.0.07.7.0+1
CVEListV5apache/apache_solrbefore 7.7

🔴Vulnerability Details

4
OSV
Incorrect Authorization in Apache Solr2022-02-09
GHSA
Incorrect Authorization in Apache Solr2022-02-09
OSV
CVE-2018-11802: In Apache Solr, the cluster can be partitioned into multiple collections and only a subset of nodes actually host any given collection2020-04-01
CVEList
CVE-2018-11802: In Apache Solr, the cluster can be partitioned into multiple collections and only a subset of nodes actually host any given collection2020-04-01

📋Vendor Advisories

2
Red Hat
solr: Information disclosure via Rule-base Authorization plugin2019-04-24
Debian
CVE-2018-11802: lucene-solr - In Apache Solr, the cluster can be partitioned into multiple collections and onl...2018

💬Community

2
Bugzilla
CVE-2018-11802 solr: Information disclosure via Rule-base Authorization plugin2019-05-07
Bugzilla
CVE-2018-11802 solr3: solr: Information disclosure via Rule-base Authorization plugin [fedora-all]2019-05-07
CVE-2018-11802 — Incorrect Authorization in Apache Solr | cvebase