Apache Solr RCE Scanner

This scanner targets the critical Remote Code Execution (RCE) vulnerability in Apache Solr 9.1. Through specific HTTP POST requests, it assesses the vulnerability by attempting to enable remote streaming and subsequently inject a remote class file, potentially leading to unauthorized command execution.

Short Info

Level

High

Single Scan

Can be used by

Asset Owner

Estimated Time

10 sec

Scan only one

Domain, Ipv4

Toolbox

-

Vulnerability Overview

Apache Solr 9.1 is found to be vulnerable to a critical RCE flaw. This vulnerability stems from improper input validation and security configuration, allowing attackers to execute arbitrary code remotely.

Vulnerability Details

The vulnerability exploits two main aspects:

Enabling remote streaming through a POST request to the /solr/<collection_name>/config endpoint.
Using the /solr/<collection_name>/debug/dump?param=ContentStreams endpoint to inject a remote JAR file containing malicious Java class code.

The exploitation process involves sending crafted requests that modify Solr's configuration to accept remote streams and execute arbitrary Java classes, leading to potential unauthorized access or control over the affected system.

Possible Effects

Unauthorized remote code execution on the server hosting Apache Solr.
Potential access to sensitive data stored in the Solr indexes.
Compromise of the underlying server infrastructure.

Why Choose SecurityForEveryone

SecurityForEveryone provides an extensive array of security scanning tools that are essential for detecting and mitigating vulnerabilities like the one in Apache Solr 9.1. Our platform offers:

Comprehensive vulnerability scanning capabilities to identify and address security flaws.
Expert guidance and support for remediation to enhance your cybersecurity posture.
Continuous updates on the latest security vulnerabilities, ensuring your defenses remain robust against evolving threats.