Vulnerabilities

CVE-2017-3164

by Fred · 08/03/2019

Server Side Request Forgery in Apache Solr, versions 1.3 until 7.6 (inclusive). Since the "shards" parameter does not have a corresponding whitelist mechanism, a remote attacker with access to the server could make Solr perform an HTTP GET request to any reachable URL.

Date published : 2019-03-08

http://www.securityfocus.com/bid/107026

https://security.netapp.com/advisory/ntap-20190327-0003/

Similar

Tags: Cybersecurity Alert