Vulnerability Name: | CVE-2019-0192 (CCN-157932) | ||||||||||||||||||||||||||||||||||||
Assigned: | 2018-11-14 | ||||||||||||||||||||||||||||||||||||
Published: | 2019-03-06 | ||||||||||||||||||||||||||||||||||||
Updated: | 2020-12-09 | ||||||||||||||||||||||||||||||||||||
Summary: | In Apache Solr versions 5.0.0 to 5.5.5 and 6.0.0 to 6.6.5, the Config API allows to configure the JMX server via an HTTP POST request. By pointing it to a malicious RMI server, an attacker could take advantage of Solr's unsafe deserialization to trigger remote code execution on the Solr side. | ||||||||||||||||||||||||||||||||||||
CVSS v3 Severity: | 9.8 Critical (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) 8.5 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
8.5 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
| ||||||||||||||||||||||||||||||||||||
CVSS v2 Severity: | 7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
| ||||||||||||||||||||||||||||||||||||
Vulnerability Type: | CWE-502 | ||||||||||||||||||||||||||||||||||||
Vulnerability Consequences: | Gain Access | ||||||||||||||||||||||||||||||||||||
References: | Source: MITRE Type: CNA CVE-2019-0192 Source: CCN Type: Apache Solr Web site Apache Solr Source: MLIST Type: Mailing List, Mitigation, Vendor Advisory [www-announce] 20190307 CVE-2019-0192 Deserialization of untrusted data via jmx.serviceUrl in Apache Solr Source: CCN Type: Oracle CPUJul2019 Oracle Critical Patch Update Advisory - July 2019 Source: BID Type: Third Party Advisory, VDB Entry 107318 Source: REDHAT Type: UNKNOWN RHSA-2019:2413 Source: XF Type: UNKNOWN apache-cve20190192-code-exec(157932) Source: MLIST Type: Mailing List, Vendor Advisory [lucene-dev] 20190320 [jira] [Issue Comment Deleted] (SOLR-13301) [CVE-2019-0192] Deserialization of untrusted data via jmx.serviceUrl Source: MLIST Type: Mailing List, Vendor Advisory [lucene-dev] 20190327 [jira] [Commented] (SOLR-13301) [CVE-2019-0192] Deserialization of untrusted data via jmx.serviceUrl Source: MLIST Type: Mailing List, Vendor Advisory [lucene-dev] 20190320 [jira] [Commented] (SOLR-13301) [CVE-2019-0192] Deserialization of untrusted data via jmx.serviceUrl Source: MLIST Type: UNKNOWN [nifi-commits] 20191113 svn commit: r1869773 - /nifi/site/trunk/security.html Source: MLIST Type: Mailing List, Vendor Advisory [lucene-dev] 20190326 [jira] [Updated] (SOLR-13301) [CVE-2019-0192] Deserialization of untrusted data via jmx.serviceUrl Source: MLIST Type: Mailing List, Vendor Advisory [lucene-dev] 20190326 [jira] [Commented] (SOLR-13301) [CVE-2019-0192] Deserialization of untrusted data via jmx.serviceUrl Source: MLIST Type: UNKNOWN [submarine-commits] 20201209 [GitHub] [submarine] QiAnXinCodeSafe opened a new issue #474: There is a vulnerability in Apache Solr 5.5.4,upgrade recommended Source: MLIST Type: UNKNOWN [nifi-commits] 20200123 svn commit: r1873083 - /nifi/site/trunk/security.html Source: CCN Type: oss-sec Mailing List, Wed, 6 Mar 2019 22:41:37 -0800 CVE-2019-0192 Deserialization of untrusted data via jmx.serviceUrl in Apache Solr Source: CONFIRM Type: Third Party Advisory https://security.netapp.com/advisory/ntap-20190327-0003/ Source: CCN Type: IBM Security Bulletin 878819 (InfoSphere Information Server) A vulnerability in Apache Solr affects IBM InfoSphere Information Server Source: CCN Type: IBM Security Bulletin 881886 (SmartCloud Analytics) Potential vulnerability related to Unsafe Deserialization in Apache Solr shipped with IBM Operations Analytics - Log Analysis (CVE-2019-0192) Source: CCN Type: Oracle CPUOct2020 Oracle Critical Patch Update Advisory - October 2020 Source: MISC Type: UNKNOWN https://www.oracle.com/security-alerts/cpuoct2020.html Source: MISC Type: UNKNOWN https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html Source: CCN Type: WhiteSource Vulnerability Database CVE-2019-0192 | ||||||||||||||||||||||||||||||||||||
Vulnerable Configuration: | Configuration 1: Configuration 2: Configuration CCN 1: ![]() | ||||||||||||||||||||||||||||||||||||
Oval Definitions | |||||||||||||||||||||||||||||||||||||
| |||||||||||||||||||||||||||||||||||||
BACK |