CVE-2021-29943: 
Java vulnerability analysis and mitigation

CVE-2021-29943 is a security vulnerability discovered in Apache Solr versions prior to 8.8.2. The vulnerability was disclosed on April 13, 2021, and affects the ConfigurableInternodeAuthHadoopPlugin authentication mechanism. The core issue involves the system forwarding or proxying distributed requests using server credentials instead of original client credentials (NVD, Rapid7).

The vulnerability has been assigned a CVSS v3.1 Base Score of 9.1 (CRITICAL) with the vector string CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N. The issue is classified under CWE-863 (Incorrect Authorization). The vulnerability specifically manifests when using the ConfigurableInternodeAuthHadoopPlugin for authentication, where the system incorrectly handles credential forwarding during distributed request processing (NVD).

The vulnerability can result in incorrect authorization resolution on receiving hosts, potentially leading to unauthorized access to sensitive information and the ability to modify data. The high severity score reflects the potential for unauthorized users to perform unauthorized read and write operations to collections (NetApp Advisory).

The primary mitigation is to upgrade Apache Solr to version 8.8.2 or later, which contains the fix for this vulnerability. No alternative workarounds have been publicly documented (Rapid7).