[jira] [Updated] (OFBIZ-12316) The Solr version included in OFBiz has an SSRF vulnerability (CVE-2021-27905)

Jacques Le Roux (Jira) Tue, 14 Sep 2021 10:17:06 -0700


     [ 
https://issues.apache.org/jira/browse/OFBIZ-12316?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Jacques Le Roux updated OFBIZ-12316:
------------------------------------
    Description: This post-auth security issue was reported to the security 
team by weinull orz <[email protected]> As he suggested the solution is to 
update Solr to its last version.

> The Solr version included in OFBiz has an SSRF vulnerability (CVE-2021-27905)
> -----------------------------------------------------------------------------
>
>                 Key: OFBIZ-12316
>                 URL: https://issues.apache.org/jira/browse/OFBIZ-12316
>             Project: OFBiz
>          Issue Type: Bug
>          Components: solr
>    Affects Versions: Trunk
>            Reporter: Jacques Le Roux
>            Assignee: Jacques Le Roux
>            Priority: Major
>
> This post-auth security issue was reported to the security team by weinull 
> orz <[email protected]> As he suggested the solution is to update Solr to 
> its last version.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Updated] (OFBIZ-12316) The Solr version included in OFBiz has an SSRF vulnerability (CVE-2021-27905)

Reply via email to