Latest apache solr Vulnerabilities

CVE-2023-50291
Apache Solr: System Property redaction logic inconsistency can lead to leaked passwords
maven/org.apache.solr:solr-core>=9.0.0<9.3.0
maven/org.apache.solr:solr-core>=6.0.0<8.11.3
Apache Solr>=6.0.0<8.11.3
Apache Solr>=9.0.0<9.3.0
CVE-2023-50292
Apache Solr: Solr Schema Designer blindly "trusts" all configsets, possibly leading to RCE by unauthenticated users
maven/org.apache.solr:solr-core>=8.10.0<8.11.3
maven/org.apache.solr:solr-core>=9.0.0<9.3.0
Apache Solr>=6.0.0<8.11.3
Apache Solr>=9.0.0<9.4.1
CVE-2023-50298
Apache Solr: Solr can expose ZooKeeper credentials via Streaming Expressions
Apache Solr>=6.0.0<8.11.3
Apache Solr>=9.0.0<9.4.1
maven/org.apache.solr:solr-solrj-streaming>=6.0.0<8.11.3
maven/org.apache.solr:solr-solrj-streaming>=9.0.0<9.4.1
maven/org.apache.solr:solr-solrj>=6.0.0<8.11.3
maven/org.apache.solr:solr-solrj>=9.0.0<9.4.1
CVE-2023-50386
Apache Solr: Backup/Restore APIs allow for deployment of executables in malicious ConfigSets
maven/org.apache.solr:solr-core>=9.0.0<9.4.1
maven/org.apache.solr:solr-core>=6.0.0<8.11.3
Apache Solr>=6.0.0<8.11.3
Apache Solr>=9.0.0<9.4.1
CVE-2023-50290
Apache Solr: Host environment variables are published via the Metrics API
maven/org.apache.solr:solr-core>=9.0.0<9.3.0
Apache Solr>=9.0.0<9.3.0
CVE-2023-44487
- Rapid Reset HTTP/2 vulnerability
Microsoft Windows 11=21H2
Microsoft Windows 11=21H2
Microsoft Windows Server 2022
Microsoft Windows Server 2022
Microsoft Windows 11=22H2
Microsoft Windows 11=22H2
and 555 more
CVE-2021-44548
An Improper Input Validation vulnerability in DataImportHandler of Apache Solr allows an attacker to provide a Windows UNC path resulting in an SMB network call being made from the Solr host to anothe...
Apache Solr<8.11.1
Microsoft Windows
CVE-2021-33813
An XXE issue in SAXBuilder in JDOM through 2.0.6 allows attackers to cause a denial of service via a crafted HTTP request.
Jdom Jdom<=2.0.6
Apache Solr=8.8.1
Apache Solr=8.9
Apache Tika=1.25
Debian Debian Linux=9.0
Fedoraproject Fedora=35
and 4 more
CVE-2021-27905
The ReplicationHandler (normally registered at "/replication" under a Solr core) in Apache Solr has a "masterUrl" (also "leaderUrl" alias) parameter that is used to designate another ReplicationHandle...
Apache Solr<8.8.2
CVE-2021-29262
When starting Apache Solr versions prior to 8.8.2, configured with the SaslZkACLProvider or VMParamsAllAndReadonlyDigestZkACLProvider and no existing security.json znode, if the optional read-only use...
Apache Solr<8.8.2
CVE-2021-29943
When using ConfigurableInternodeAuthHadoopPlugin for authentication, Apache Solr versions prior to 8.8.2 would forward/proxy distributed requests using server credentials instead of original client cr...
Apache Solr<8.8.2
CVE-2021-28163
Eclipse Jetty could allow a remote authenticated attacker to obtain sensitive information, caused by a flaw when the ${jetty.base} directory or the ${jetty.base}/webapps directory is a symlink. By sen...
redhat/rh-eclipse-jetty<0:9.4.40-1.1.el7_9
redhat/jenkins<0:2.277.3.1620393611-1.el8
redhat/runc<0:1.0.0-95.rhaos4.8.gitcd80260.el8
redhat/jetty<9.4.39
redhat/jetty<10.0.2
redhat/jetty<11.0.2
and 33 more
CVE-2020-27223
Eclipse Jetty is vulnerable to a denial of service, caused by an error when handling a request containing multiple Accept headers with a large number of quality parameters. By sending a specially-craf...
redhat/jenkins<0:2.289.1.1624365627-1.el7
redhat/jenkins<0:2.277.3.1623846768-1.el7
redhat/jenkins<0:2.277.3.1623853726-1.el8
debian/jetty9
redhat/jetty-9.4.37.v20210219 jetty-10.0.1 jetty<11.0.1
IBM Secure Proxy<=6.0.2
and 25 more
CVE-2020-9492
In Apache Hadoop 3.2.0 to 3.2.1, 3.0.0-alpha1 to 3.1.3, and 2.0.0-alpha to 2.10.0, WebHDFS client might send SPNEGO authorization header to remote URL without proper verification.
redhat/hadoop<3.2.2
redhat/hadoop<3.1.4
redhat/hadoop<2.10.1
Apache Hadoop>=2.0.0<=2.10.0
Apache Hadoop>=3.0.0<=3.1.3
Apache Hadoop>=3.2.0<=3.2.1
and 4 more
CVE-2020-13957
Apache Solr versions 6.6.0 to 6.6.6, 7.0.0 to 7.7.3 and 8.0.0 to 8.6.2 prevents some features considered dangerous (which could be used for remote code execution) to be configured in a ConfigSet that'...
Apache Solr>=6.6.0<=6.6.6
Apache Solr>=7.0.0<=7.7.3
Apache Solr>=8.0.0<=8.6.2
CVE-2020-13941
Reported in SOLR-14515 (private) and fixed in SOLR-14561 (public), released in Solr version 8.6.0. The Replication handler (https://lucene.apache.org/solr/guide/8_6/index-replication.html#http-api-com...
Apache Solr<8.6.0
CVE-2018-11802
In Apache Solr, the cluster can be partitioned into multiple collections and only a subset of nodes actually host any given collection. However, if a node receives a request for a collection it does n...
Apache Solr<7.7.0
CVE-2019-17558
Apache Solr VelocityResponseWriter Plug-In Remote Code Execution Vulnerability
Apache Solr>=5.0.0<=8.3.1
Oracle Primavera Unifier>=17.7<=17.12
Oracle Primavera Unifier=16.1
Oracle Primavera Unifier=16.2
Oracle Primavera Unifier=18.8
Oracle Primavera Unifier=19.12
and 1 more
CVE-2019-12409
The 8.1.1 and 8.2.0 releases of Apache Solr contain an insecure setting for the ENABLE_REMOTE_JMX_OPTS configuration option in the default solr.in.sh configuration file shipping with Solr. If you use ...
Apache Solr=8.1.1
Apache Solr=8.2.0
Linux Linux kernel
CVE-2019-12401
Solr versions 1.3.0 to 1.4.1, 3.1.0 to 3.6.2 and 4.0.0 to 4.10.4 are vulnerable to an XML resource consumption attack (a.k.a. Lol Bomb) via it’s update handler.?By leveraging XML DOCTYPE and ENTITY ty...
Apache Solr>=1.3.0<=1.4.1
Apache Solr>=3.1<=3.6.2
Apache Solr>=4.0.0<=4.10.4
CVE-2019-0193
Apache Solr DataImportHandler Code Injection Vulnerability
Apache Solr<8.2.0
CVE-2017-3164
Server Side Request Forgery in Apache Solr, versions 1.3 until 7.6 (inclusive). Since the "shards" parameter does not have a corresponding whitelist mechanism, a remote attacker with access to the ser...
Apache Solr>=1.3.0<=7.6.0
CVE-2019-0192
In Apache Solr versions 5.0.0 to 5.5.5 and 6.0.0 to 6.6.5, the Config API allows to configure the JMX server via an HTTP POST request. By pointing it to a malicious RMI server, an attacker could take ...
Apache Solr>=5.0.0<=5.5.5
Apache Solr>=6.0.0<=6.6.5
Netapp Storage Automation Store
CVE-2018-8026
This vulnerability in Apache Solr 6.0.0 to 6.6.4 and 7.0.0 to 7.3.1 relates to an XML external entity expansion (XXE) in Solr config files (currency.xml, enumsConfig.xml referred from schema.xml, TIKA...
Apache Solr>6.0.0<=6.6.4
Apache Solr>=7.0.0<=7.3.1
Netapp Snapcenter
Netapp Storage Automation Store
maven/org.apache.solr:solr-core>=7.0.0<7.4.0
maven/org.apache.solr:solr-core>=6.0.0<6.6.5
CVE-2018-8010
This vulnerability in Apache Solr 6.0.0 to 6.6.3, 7.0.0 to 7.3.0 relates to an XML external entity expansion (XXE) in Solr config files (solrconfig.xml, schema.xml, managed-schema). In addition, Xincl...
Apache Solr>=6.0.0<=6.6.3
Apache Solr>=7.0.0<=7.3.0
maven/org.apache.solr:solr-core>=7.0.0<7.3.1
maven/org.apache.solr:solr-core>=6.6.0<6.6.4

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203