CVE-2019-12409

Name of the Vulnerable Software and Affected Versions Apache Solr versions 8.1.1 through 8.2.0

Description The issue is related to an insecure setting in the default solr.in.sh configuration file, which enables JMX monitoring without authentication on the RMI PORT (default port 18983). This could allow anyone with network access to the Solr nodes to access JMX and potentially upload malicious code for execution on the Solr server. The vulnerability may also be related to unrestricted file upload, which could enable a remote attacker to upload harmful files.

Recommendations For Apache Solr versions 8.1.1 and 8.2.0, consider disabling JMX monitoring or restricting access to the RMI PORT until a secure configuration can be applied. As a temporary workaround, restrict inbound traffic to the RMI PORT in your firewall to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.