A vulnerability was found in Apache Lucene up to 9.11.x. It has been classified as problematic. This affects an unknown part of the component org.apache.lucene.replicator.http. The manipulation leads to deserialization.
This vulnerability is uniquely identified as CVE-2024-45772. The attack needs to be initiated within the local network. There is no exploit available.
It is recommended to upgrade the affected component.