Improper input validation in Apache Software Foundation Solr
CVE-2021-44548
An Improper Input Validation vulnerability in DataImportHandler of Apache Solr allows an attacker to provide a Windows UNC path resulting in an SMB network call being made from the Solr host to another host on the network. If the attacker…
EPSS: 0.050 (89.9th percentile) — read the EPSS interpretation.
Affected products
- Apache Software Foundation Solr — versions unspecified
Weakness classification (CWE)
References
- solr.apache.org/security.html (x_refsource_MISC)
- security.netapp.com/advisory/ntap-20220114-0005/ (x_refsource_CONFIRM)