Improper Authentication
CVE-2024-45216
Summary
An Improper Authentication vulnerability exists in Apache Solr. Solr instances using the "PKIAuthenticationPlugin," which is enabled by default when Solr Authentication is used, are vulnerable to an authentication bypass. By appending a fake ending at the end of any Solr API URL path, attackers can bypass authentication while maintaining the API contract with the original URL path. This fake ending appears as if it were an unprotected API path, but it is stripped off internally after authentication and before API routing. This vulnerability affects org.apache.solr:solr-core package versions 5.3.0 through to 8.11.3, and 9.0.0 throuh 9.6.1. Users are recommended to upgrade to a fixed version to fix the issue.
- LOW
- NETWORK
- HIGH
- UNCHANGED
- NONE
- NONE
- HIGH
- HIGH
CWE-287 - Improper Authentication
Improper (or broken) authentication attacks are widespread, and have accounted for many of the worst data breaches in recent years. Improper authentication attacks are a class of vulnerabilities where an attacker impersonates a legitimate user by exploiting weaknesses in either session management or credential management to gain access to the user’s account. This can result in disclosure of sensitive information, and can lead to system compromise, theft, identity theft, and fraud.
Advisory Timeline
- Published
