Apache · Apache Solr · CVE-2017-9325
**Name of the Vulnerable Software and Affected Versions**
Apache Solr (affected versions not specified)
**Description**
The issue arises from the provided secure solrconfig.xml sample configuration, which fails to enforce Sentry authorization on the "/update/json/docs" API endpoint. This lack of authorization can lead to unauthorized access and modifications.
**Recommendations**
For all affected versions, consider modifying the solrconfig.xml to properly enforce Sentry authorization on the "/update/json/docs" API endpoint as a temporary workaround. Restrict access to this endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.