CVE-2017-12629: Remote code execution

October 14, 2017 (updated March 1, 2018)

Remote code execution is possible in Apache Solr.

References

www.cvedetails.com/cve/CVE-2017-12629/
www.securityfocus.com/bid/101261
github.com/AsyncHttpClient/async-http-client/issues/1455
nvd.nist.gov/vuln/detail/CVE-2017-12629
s.apache.org/FJDl
www.exploit-db.com/exploits/43009/

Detect and mitigate CVE-2017-12629 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →