Apache Solr Unprivileged users may be able to perform unauthorized read/write to collections
Description
When using ConfigurableInternodeAuthHadoopPlugin for authentication, Apache Solr versions prior to 8.8.2 would forward/proxy distributed requests using server credentials instead of original client credentials. This would result in incorrect authorization resolution on the receiving hosts.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Apache Solr prior to 8.8.2 forwards distributed requests with server credentials instead of client credentials, causing incorrect authorization.
Vulnerability
Description
When using the ConfigurableInternodeAuthHadoopPlugin for authentication, Apache Solr versions prior to 8.8.2 improperly forward or proxy distributed requests using the server's own credentials instead of the original client's credentials [1]. This means that when a Solr node relays a request to another node in the cluster, it authenticates with its own internal credentials rather than preserving the client's authentication context.
Exploitation
An attacker who can submit requests to a Solr cluster can exploit this behavior. The forwarding node uses its own credentials, so the receiving node sees the request as coming from a trusted internal server, bypassing the intended client-level authorization checks [1]. No special network position is required beyond being able to reach the Solr cluster.
Impact
This flaw results in incorrect authorization resolution on the receiving hosts. An attacker could perform operations that should be restricted, such as accessing or modifying data they are not authorized to, because the receiving node trusts the forwarded request as if it originated from an internal server [1].
Mitigation
The vulnerability is fixed in Apache Solr version 8.8.2 [1]. Users should upgrade to this version or later. No workarounds are documented in the available reference.
AI Insight generated on May 21, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.apache.solr:solr-parentMaven | < 8.8.2 | 8.8.2 |
Affected products
3- osv-coords2 versions
< 8.8.2+ 1 more
- (no CPE)range: < 8.8.2
- (no CPE)range: < 8.8.2
- Apache Software Foundation/Apache Solrv5Range: Apache Solr
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- github.com/advisories/GHSA-vf7p-j8x6-xvwpghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2021-29943ghsaADVISORY
- lists.apache.org/thread.html/r91dd0ff556e0c9aab4c92852e0e540c59d4633718ce12881558cf44d%40%3Cusers.solr.apache.org%3Eghsax_refsource_MISCWEB
- security.netapp.com/advisory/ntap-20210604-0009ghsaWEB
- security.netapp.com/advisory/ntap-20210604-0009/mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.