This repository has been archived by the owner on Oct 23, 2024. It is now read-only.

Solr vulnerability

Low

mtoonen published GHSA-9j8m-w675-376q Oct 18, 2019 · 1 comment

Package

No package listed

Affected versions

=<5.2.3,=< 5.4.5, =< 5.5.7

Patched versions

5.2.4, 5.4.6, 5.5.8

Description

Impact

When solr has private data in its index, it is possible to view that without permission

Patches

5.2.4
5.4.6
5.5.8

Workarounds

Empty index, don't use solr, remove private data from solr

For more information

If you have any questions or comments about this advisory:

Open an issue in github
Email us at [email protected]