CVE-2024-52012

MEDIUM

Apache Solr <9.7.0 - Path Traversal

Title source: llm

Description

Relative Path Traversal vulnerability in Apache Solr. Solr instances running on Windows are vulnerable to arbitrary filepath write-access, due to a lack of input-sanitation in the "configset upload" API. Commonly known as a "zipslip", maliciously constructed ZIP files can use relative filepaths to write data to unanticipated parts of the filesystem. This issue affects Apache Solr: from 6.6 through 9.7.0. Users are recommended to upgrade to version 9.8.0, which fixes the issue. Users unable to upgrade may also safely prevent the issue by using Solr's "Rule-Based Authentication Plugin" to restrict access to the configset upload API, so that it can only be accessed by a trusted set of administrators/users.

References (2)

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2025/01/26/2

[Mailing List, Vendor Advisory] https://lists.apache.org/thread/yp39pgbv4vf1746pf5yblz84lv30vfxd

Scores

CVSS v3 5.4

EPSS 0.1379

EPSS Percentile 94.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-23

Status published

Products (2)

apache/solr 6.6.0 - 9.8.0

org.apache.solr/solr-core 6.6 - 9.8.0Maven

Published Jan 27, 2025

Tracked Since Feb 18, 2026