You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@solr.apache.org by "Hariprasad T (Jira)" <ji...@apache.org> on 2022/11/09 11:42:00 UTC

[jira] [Created] (SOLR-16539) Apache Solr Arbitrary File Read Vulnerability (Zero Day)

Hariprasad T created SOLR-16539:
-----------------------------------

             Summary: Apache Solr Arbitrary File Read Vulnerability (Zero Day)
                 Key: SOLR-16539
                 URL: https://issues.apache.org/jira/browse/SOLR-16539
             Project: Solr
          Issue Type: Task
      Security Level: Public (Default Security Level. Issues are Public)
            Reporter: Hariprasad T


Hi Team,

We have a Sitecore project with the version 9.3 and we are using windows Solr 8.1.1. We have this Vulnerability "Apache Solr Arbitrary File Read Vulnerability (Zero Day)" impacted on few of our servers. 

*Impacted Servers:*

Many servers like TST, STG, Prod.

For this vulnerability we don't have any patch fixes. We tried to find the mitigation in Solr's official portal. But unfortunately we are unable to find any patch fix assoiciated for this vulnerability.

Please help us to fix this vulnerability or suggest any mitigations.

Thanks in advance!

 

Regards,

Hariprasad T



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscribe@solr.apache.org
For additional commands, e-mail: issues-help@solr.apache.org