Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2024-45216

CWE-287Improper AuthenticationCWE-863Incorrect Authorization8 documents7 sources
Severity
9.8CRITICAL
EPSS
94.1%
top 0.09%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
Apache Software Foundation Apache SolrApache Solr
Timeline
PublishedOct 16

Description

Improper Authentication vulnerability in Apache Solr. Solr instances using the PKIAuthenticationPlugin, which is enabled by default when Solr Authentication is used, are vulnerable to Authentication bypass. A fake ending at the end of any Solr API URL path, will allow requests to skip Authentication while maintaining the API contract with the original URL Path. This fake ending looks like an unprotected API path, however it is stripped off internally after authentication but before API routing.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages3 packages

NVDapache/solr5.3.08.11.4+1
Mavenorg.apache.solr:solr5.3.08.11.4+1
CVEListV5apache_software_foundation/apache_solr5.3.08.11.4+1

🔴Vulnerability Details

5
CVEList
Apache Solr: Authentication bypass possible using a fake URL Path ending2024-10-16
OSV
CVE-2024-45216: Improper Authentication vulnerability in Apache Solr2024-10-16
GHSA
Improper Authentication vulnerability in Apache Solr2024-10-16
OSV
Improper Authentication vulnerability in Apache Solr2024-10-16
VulnCheck
Apache Solr Improper Authentication2024

💥Exploits & PoCs

1
Nuclei
Apache Solr - Authentication Bypass

📋Vendor Advisories

1
Debian
CVE-2024-45216: lucene-solr - Improper Authentication vulnerability in Apache Solr. Solr instances using the ...2024
CVE-2024-45216 (CRITICAL CVSS 9.8) | Improper Authentication vulnerabili | cvebase.io