Package impact

Maven / org.apache.solr:solr-core

critical high medium low unknown

0

KEV Has exploit

CVE	Severity	CVSS	Risk	Published	Description	Impact
CVE-2017-12629	critical	9.8	9.8	9y ago	Remote code execution occurs in Apache Solr	+1
CVE-2019-17558	unknown	—	1.5	6y ago	Improper Input Validation in Apache Solr
CVE-2019-0193	unknown	—	1.5	7y ago	XML External Entity (XXE) Injection in Apache Solr
CVE-2026-22444	unknown	—	—	4mo ago	Apache Solr: Insufficient file-access checking in standalone core-creation requests
CVE-2026-22022	unknown	—	—	4mo ago	Apache Solr: Unauthorized bypass of certain "predefined permission" rules in the RuleBasedAuthorizationPlugin
CVE-2025-24814	unknown	—	—	1y ago	Apache Solr vulnerable to Execution with Unnecessary Privileges
CVE-2024-52012	unknown	—	—	1y ago	Apache Solr Relative Path Traversal vulnerability
CVE-2023-50291	unknown	—	—	2y ago	Apache Solr can leak certain passwords due to System Property redaction logic inconsistencies
CVE-2023-50386	unknown	—	—	2y ago	Apache Solr: Backup/Restore APIs allow for deployment of executables in malicious ConfigSets
CVE-2023-50292	unknown	—	—	2y ago	Apache Solr Schema Designer blindly "trusts" all configsets
CVE-2023-50290	unknown	—	—	2y ago	Apache Solr allows read access to host environmet variables
CVE-2019-12401	unknown	—	—	4y ago	Apache Solr vulnerable to XML Bomb
CVE-2020-13957	unknown	—	—	4y ago	Incorrect Authorization in Apache Solr
CVE-2018-11802	unknown	—	—	4y ago	Incorrect Authorization in Apache Solr
CVE-2017-3164	unknown	—	—	7y ago	Server-Side Request Forgery (SSRF) in org.apache.solr:solr-core
CVE-2019-0192	unknown	—	—	7y ago	Critical severity vulnerability that affects org.apache.solr:solr-core
CVE-2018-8010	unknown	—	—	8y ago	There is a XML external entity expansion (XXE) vulnerability in Apache Solr config files
CVE-2018-1308	unknown	—	—	8y ago	There is a XML external entity expansion (XXE) vulnerability in Apache Solr
CVE-2018-8026	unknown	—	—	8y ago	XML external entity expansion in org.apache.solr:solr-core