Main Vulnerability Database Vulnerabilities #VU86632

#VU86632 Insufficiently protected credentials in Apache Solr - CVE-2023-50291

Published: February 20, 2024

Vulnerability identifier: #VU86632

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2023-50291

CWE-ID: CWE-522

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
Apache Solr

Software vendor:
Apache Foundation

Description

The vulnerability allows a remote user to gain access to sensitive information.

The vulnerability exists due to an insecure redaction logic in the "/admin/info/properties" endpoint that hid only system properties with the "password" string inside their names. A remote user with "config-read" permission can obtain credentials stored in other properties, such as "basicauth" or "aws.secretKey".

Remediation

Install updates from vendor's website.

External links

https://solr.apache.org/security.html#cve-2023-50291-apache-solr-can-leak-certain-passwords-due-to-system-property-redaction-logic-inconsistencies
http://www.openwall.com/lists/oss-security/2024/02/09/4
https://lists.apache.org/thread/w76gwqhl523pv7o9bkcf9g7znffq8m6q

#VU86632 Insufficiently protected credentials in Apache Solr - CVE-2023-50291

Description

Remediation

External links

Please verify you're human