CVE-2019-0193

Name of the Vulnerable Software and Affected Versions Apache Solr versions prior to 8.2.0

Description The DataImportHandler module in Apache Solr has a feature that allows the whole DIH configuration to come from a request's dataConfig parameter. This parameter is a security risk since a DIH config can contain scripts. The debug mode of the DIH admin screen uses this feature, allowing convenient debugging and development of a DIH config. Exploitation of this issue may allow a remote attacker to impact the confidentiality, integrity, and availability of protected information.

Recommendations For versions prior to 8.2.0, consider disabling the use of the dataConfig parameter until a patch is available. As a temporary workaround, restrict access to the DataImportHandler module to minimize the risk of exploitation. Starting with version 8.2.0, use of the dataConfig parameter requires setting the Java System property enable.dih.dataConfigParam to true, which should be done with caution and only when necessary.