CVE-2021-44548

An Improper Input Validation vulnerability in DataImportHandler of Apache Solr allows an attacker to provide a Windows UNC path resulting in an SMB network call being made from the Solr host to another host on the network. If the attacker has wider access to the network, this may lead to SMB attacks, which may result in: * The exfiltration of sensitive data such as OS user hashes (NTLM/LM hashes), * In case of misconfigured systems, SMB Relay Attacks which can lead to user impersonation on SMB Shares or, in a worse-case scenario, Remote Code Execution This issue affects all Apache Solr versions prior to 8.11.1. This issue only affects Windows.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:apache:solr:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

History

09 Aug 2022, 13:28

Type Values Removed Values Added
CWE CWE-20

21 Jan 2022, 14:25

Type Values Removed Values Added
References (CONFIRM) https://security.netapp.com/advisory/ntap-20220114-0005/ - (CONFIRM) https://security.netapp.com/advisory/ntap-20220114-0005/ - Third Party Advisory

14 Jan 2022, 07:15

Type Values Removed Values Added
References
  • (CONFIRM) https://security.netapp.com/advisory/ntap-20220114-0005/ -

07 Jan 2022, 15:18

Type Values Removed Values Added
CPE cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
cpe:2.3:a:apache:solr:*:*:*:*:*:*:*:*
CWE CWE-22
CWE-20
References (MISC) https://solr.apache.org/security.html#cve-2021-44548-apache-solr-information-disclosure-vulnerability-through-dataimporthandler - (MISC) https://solr.apache.org/security.html#cve-2021-44548-apache-solr-information-disclosure-vulnerability-through-dataimporthandler - Vendor Advisory
First Time Microsoft windows
Apache solr
Apache
Microsoft
CVSS v2 : unknown
v3 : unknown
v2 : 6.8
v3 : 9.8

23 Dec 2021, 09:15

Type Values Removed Values Added
New CVE

Information

Published : 2021-12-23 09:15

Updated : 2023-12-10 14:09


NVD link : CVE-2021-44548

Mitre link : CVE-2021-44548

CVE.ORG link : CVE-2021-44548


JSON object : View

Products Affected

apache

  • solr

microsoft

  • windows
CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CWE-20

Improper Input Validation

CWE-40

Path Traversal: '\\UNC\share\name\' (Windows UNC Share)