POLICY-OTHER --
POLICY-OTHER Apache Solr DataImportHandler arbitrary dataConfig import attempt
This event is generated when some user attempts to upload an arbitrary dataConfig file to Apache Solr. Impact: Potential Corporate Privacy Violation Details: This rule checks for ALL attempts to upload an arbitrary dataConfig file to Apache Solr's DataImportHandler function. Ease of Attack:
No information provided
No public information
Known false positives, with the described conditions
This rule will alert on all attempts to to upload some arbitrary DIH config file to the DataImportHandler function. The ability to use this dataConfig import function is disabled by default.
Cisco Talos Intelligence Group
No rule groups
CVE-2019-0193 |
Loading description
|