QwikSec

Security Database

CVE

CWE

Training

CVE-2019-17558

Published: Dec 30, 2019

Modified: Oct 21, 2025

PUBLISHED

Description

Apache Solr 5.0.0 to Apache Solr 8.3.1 are vulnerable to a Remote Code Execution through the VelocityResponseWriter. A Velocity template can be provided through Velocity templates in a configset `velocity/` directory or as a parameter. A user defined configset could contain renderable, potentially malicious, templates. Parameter provided templates are disabled by default, but can be enabled by setting `params.resource.loader.enabled` by defining a response writer with that setting set to `true`. Defining a response writer requires configuration API access. Solr 8.4 removed the params resource loader entirely, and only enables the configset-provided template rendering when the configset is `trusted` (has been uploaded by an authenticated user).

Vendor	Product	Versions
n/a	Apache Solr	affected `Apache Solr 5.0.0 to Apache Solr 8.3.1`

References

[lucene-issues] 20200107 [jira] [Commented] (SOLR-13971) CVE-2019-17558: Velocity custom template RCE vulnerability

mailing-list

x_refsource_MLIST

[lucene-issues] 20200108 [jira] [Commented] (SOLR-13971) CVE-2019-17558: Velocity custom template RCE vulnerability

mailing-list

x_refsource_MLIST

[lucene-issues] 20200108 [jira] [Updated] (SOLR-14025) CVE-2019-17558: Velocity response writer RCE vulnerability persists after 8.3.1

mailing-list

x_refsource_MLIST

[lucene-issues] 20200108 [GitHub] [lucene-solr] Sachpat opened a new pull request #1156: SOLR-13971

mailing-list

x_refsource_MLIST

[lucene-issues] 20200108 [GitHub] [lucene-solr] Sachpat commented on a change in pull request #1156: SOLR-13971: CVE-2019-17558: Velocity custom template RCE vulnerability

mailing-list

x_refsource_MLIST

[lucene-issues] 20200108 [GitHub] [lucene-solr] artem-smotrakov commented on a change in pull request #1156: SOLR-13971: CVE-2019-17558: Velocity custom template RCE vulnerability

mailing-list

x_refsource_MLIST

[lucene-issues] 20200108 [GitHub] [lucene-solr] Sachpat commented on issue #1156: SOLR-13971: CVE-2019-17558: Velocity custom template RCE vulnerability

mailing-list

x_refsource_MLIST

[lucene-issues] 20200113 [GitHub] [lucene-solr] Sachpat closed pull request #1156: SOLR-13971: CVE-2019-17558: Velocity custom template RCE vulnerability

mailing-list

x_refsource_MLIST

[lucene-issues] 20200113 [jira] [Commented] (SOLR-14025) CVE-2019-17558: Velocity response writer RCE vulnerability persists after 8.3.1

mailing-list

x_refsource_MLIST

[lucene-issues] 20200113 [GitHub] [lucene-solr] chatman commented on issue #1156: SOLR-13971: CVE-2019-17558: Velocity custom template RCE vulnerability

mailing-list

x_refsource_MLIST

[lucene-issues] 20200113 [GitHub] [lucene-solr] Sachpat commented on issue #1156: SOLR-13971: CVE-2019-17558: Velocity custom template RCE vulnerability

mailing-list

x_refsource_MLIST

[lucene-dev] 20200213 Re: 7.7.3 bugfix release

mailing-list

x_refsource_MLIST

[lucene-dev] 20200214 Re: 7.7.3 bugfix release

mailing-list

x_refsource_MLIST

[lucene-issues] 20200219 [jira] [Updated] (SOLR-14025) CVE-2019-17558: Velocity response writer RCE vulnerability persists after 8.3.1

mailing-list

x_refsource_MLIST

[ambari-issues] 20200220 [jira] [Created] (AMBARI-25482) solr dependence CVE-2019-17558

mailing-list

x_refsource_MLIST

[lucene-solr-user] 20200320 CVEs (vulnerabilities) that apply to Solr 8.4.1

mailing-list

x_refsource_MLIST

[lucene-solr-user] 20200320 Re: CVEs (vulnerabilities) that apply to Solr 8.4.1

mailing-list

x_refsource_MLIST

https://www.oracle.com/security-alerts/cpuoct2020.html

x_refsource_MISC

https://issues.apache.org/jira/browse/SOLR-13971

x_refsource_MISC

http://packetstormsecurity.com/files/157078/Apache-Solr-8.3.0-Velocity-Template-Remote-Code-Execution.html

x_refsource_MISC

[submarine-commits] 20201209 [GitHub] [submarine] QiAnXinCodeSafe opened a new issue #474: There is a vulnerability in Apache Solr 5.5.4,upgrade recommended

mailing-list

x_refsource_MLIST

[lucene-solr-user] 20210203 Re: SolrCloud keeps crashing

mailing-list

x_refsource_MLIST

[lucene-issues] 20210210 [GitHub] [lucene-solr] rhtham edited a comment on pull request #1156: SOLR-13971: CVE-2019-17558: Velocity custom template RCE vulnerability

mailing-list

x_refsource_MLIST

[lucene-issues] 20210210 [GitHub] [lucene-solr] rhtham commented on pull request #1156: SOLR-13971: CVE-2019-17558: Velocity custom template RCE vulnerability

mailing-list

x_refsource_MLIST

[lucene-solr-user] 20210212 CVE-2019-17558 on SOLR 6.1

mailing-list

x_refsource_MLIST

[lucene-solr-user] 20210212 Re: CVE-2019-17558 on SOLR 6.1

mailing-list

x_refsource_MLIST

[lucene-solr-user] 20210213 Re: CVE-2019-17558 on SOLR 6.1

mailing-list

x_refsource_MLIST

[lucene-issues] 20210315 [GitHub] [lucene-solr] erikhatcher commented on pull request #1156: SOLR-13971: CVE-2019-17558: Velocity custom template RCE vulnerability

mailing-list

x_refsource_MLIST

[druid-commits] 20210324 [GitHub] [druid] jihoonson opened a new pull request #11030: Suppress cves

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.