1. Symantec-Broadcom-Horizontal/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: Apache Solr RCE CVE-2019-0192

Web Attack: Apache Solr RCE CVE-2019-0192

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to exploit a remote code execution vulnerability in Apache Solr.

Additional Information

Apache Solr is prone to a remote code-execution vulnerability because it fails to properly perform deserialization. An attacker can exploit this issue through jmx.serviceUrl.

Successfully exploiting this issue allows attackers to execute arbitrary code in the context of the affected application. Failed exploits will result in denial-of-service conditions.

Affected

  • Apache Solrversions 5.0.0 through 5.5.5 and 6.0.0 through 6.6.5 are vulnerable.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube