17 AM, Rick Tham wrote:
We are using Solr 6.1 and at the moment we can not upgrade due to
application dependencies.
We have mitigation steps in place to only trust specific machines within
our DMZ.
I am trying to figure out if the following is an additioanal valid
mitigation step for CVE-2019-175
Thanks Shawn.
On Fri, Feb 12, 2021 at 7:43 PM Shawn Heisey wrote:
> On 2/12/2021 11:17 AM, Rick Tham wrote:
> > I am trying to figure out if the following is an additioanal valid
> > mitigation step for CVE-2019-17558 on SOLR 6.1. None of our
> solrconfig.xml
> > contai
On 2/12/2021 11:17 AM, Rick Tham wrote:
I am trying to figure out if the following is an additioanal valid
mitigation step for CVE-2019-17558 on SOLR 6.1. None of our solrconfig.xml
contains the lib references to the velocity jar files as follows:
l
It doesn't appear that you can add
We are using Solr 6.1 and at the moment we can not upgrade due to
application dependencies.
We have mitigation steps in place to only trust specific machines within
our DMZ.
I am trying to figure out if the following is an additioanal valid
mitigation step for CVE-2019-17558 on SOLR 6.1. None of
