Description
Due to vulnerabilities in Log4j library used by Apache Solr, an unauthenticated attacker can leak sensitive information or execute arbitrary code on the system.
Remediation
Upgrade to the latest version of Apache Solr
References
Related Vulnerabilities
WordPress Plugin YaySMTP-Simple WP SMTP Mail Information Disclosure (2.2)
PHP opcache-status page publicly accessible
WordPress Plugin HTML5 MP3 Player with Playlist Free Information Disclosure (2.6)
WordPress Plugin Gallery-Flagallery Photo Portfolio Information Disclosure (4.24)
ColdFusion Access Control bypass with WDDX Deserialization RCE (CVE-2023-29298/CVE-2023-29300)