OpenCms Chemistry Solr XML External Entity (XXE) vulnerability (CVE-2023-42346)
Description
Apache Solr component in Apache Chemistry in OpenCms has an XXE vulnerability. This vulnerability allows an attacker to send crafted requests to a web application for extraction of secrets from the file system, server-side request forgery, or denial-of-service attacks.
Remediation
Upgrade to the latest version of OpenCms