Skip to content

vvmdx/Apache-Solr-RCE_CVE-2023-50386_POC

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits

pics

pics

 
 

src/main/java/zk_backup_0/configs/conf1

src/main/java/zk_backup_0/configs/conf1

 
 

CVE-2023-50386.py

CVE-2023-50386.py

 
 

README.md

README.md

 
 

conf1.zip

conf1.zip

 
 

conf2.zip

conf2.zip

 
 

Repository files navigation

Apache-Solr-RCE_CVE-2023-50386_POC

Apache Solr Backup/Restore APIs RCE Poc (CVE-2023-50386)

参考(向dalao们致敬):

CVE-2023-50386漏洞作者博客

Java Security Manager绕过姿势

JDK 17下的反射保护绕过

JNI绕Rasp

漏洞利用原理和思考:https://mp.weixin.qq.com/s/mO4e8aiuL56yBdOD4jy2qQ

poc是用Pocsuite3写的,直接用框架运行即可,若不使用框架,则提取其核心实现出来也可以

conf1.zip和conf2.zip可以直接使用

若需要自己测试和编译,Java的Exp都在src下面,包含了我所有测试用和能够使用的Exp

poc执行效果:

验证

image-1

代码执行

image-2

About

Apache Solr Backup/Restore APIs RCE Poc (CVE-2023-50386)

Resources

Readme
Activity

Stars

58 stars

Watchers

2 watching

Forks

5 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages