【已复现】Apache Solr 代码执行漏洞安全风险通告
Tags
attack-pattern: | Server - T1583.004 Server - T1584.004 |
Common Information
Type | Value |
---|---|
UUID | fa404b5c-b836-4a9b-a12e-52d0134dd7ae |
Fingerprint | 1bc146daef467fd0 |
Analysis status | DONE |
Considered CTI value | 0 |
Text language | |
Published | April 15, 2023, midnight |
Added to db | April 15, 2023, 4:47 p.m. |
Last updated | Dec. 23, 2024, 11:17 a.m. |
Headline | 【已复现】Apache Solr 代码执行漏洞安全风险通告 |
Title | 【已复现】Apache Solr 代码执行漏洞安全风险通告 |
Detected Hints/Tags/Attributes | 4/1/12 |
Source URLs
URL Provider
RSS Feed
Details | Id | Enabled | Feed title | Url | Added to db |
---|---|---|---|---|---|
Details | 266 | ✔ | 奇安信 CERT | https://wechat2rss.xlab.app/feed/981c000a01bbdc1f128d260cc91c15d3a6afb530.xml | 2024-08-30 22:08 |
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | China National Vulnerability Database CNVD | 2 | CNVD-2023-27598 |
|
Details | Domain | 2 | zkcli.sh |
|
Details | Domain | 1 | org.apache.solr.security |
|
Details | Domain | 7 | solr.apache.org |
|
Details | Domain | 1 | blog.noah.360.net |
|
Details | File | 1 | 在security.json |
|
Details | File | 1 | 在solrcloud模式下需要将security.json |
|
Details | File | 3 | security.json |
|
Details | File | 1 | 在独立模式下需要创建security.json |
|
Details | File | 2 | authentication-and-authorization-plugins.html |
|
Details | Url | 1 | https://solr.apache.org/guide/6_6/authentication-and-authorization-plugins.html |
|
Details | Url | 1 | https://blog.noah.360.net/apache-solr-rce |