58 matches found
Security Bulletin: IBM Operational Decision Manager - Multiple CVEs addressed related to SOLR and its dependencies (such as Jetty) affecting ODM-9.0.0 and older versions
Summary This Security bulletin addresses vulnerabilities in Apache Solr and its dependencies including Eclipse Jetty that might affect IBM Operational Decision Manager version 9.0.0 and older versions. Vulnerability Details CVEID:CVE-2026-2332 DESCRIPTION: In Eclipse Jetty, the HTTP/1.1 parser is...
Linux Distros Unpatched Vulnerability : CVE-2026-44825
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Hardcoded credentials in the Basic Authentication setup tool bin/solr auth enable in Apache Solr versions 9.4.0 through 9.10.1 and 10.0.0 allows a remote attack...
K000160725: Apache Solr vulnerability CVE-2026-22022
Security Advisory Description Deployments of Apache Solr 5.3.0 through 9.10.0 that rely on Solr's "Rule Based Authorization Plugin" are vulnerable to allowing unauthorized access to certain Solr APIs, due to insufficiently strict input validation in those components. Only deployments that meet al...
Linux Distros Unpatched Vulnerability : CVE-2026-22022
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Deployments of Apache Solr 5.3.0 through 9.10.0 that rely on Solr's Rule Based Authorization Plugin are vulnerable to allowing unauthorized access to certain So...
Exploit for CVE-2026-22444
CVE-2026-22444 Apache Solr UNC Path Validation Vulnerability...
EUVD-2026-3666
Deployments of Apache Solr 5.3.0 through 9.10.0 that rely on Solr's "Rule Based Authorization Plugin" are vulnerable to allowing unauthorized access to certain Solr APIs, due to insufficiently strict input validation in those components. Only deployments that meet all of the following criteria ar...
CVE-2026-22022
Deployments of Apache Solr 5.3.0 through 9.10.0 that rely on Solr's "Rule Based Authorization Plugin" are vulnerable to allowing unauthorized access to certain Solr APIs, due to insufficiently strict input validation in those components. Only deployments that meet all of the following criteria ar...
CVE-2022-25844 vulnerabilities
Vulnerabilities for packages: solr...
GHSA-2VRF-HF26-JRP5 vulnerabilities
Vulnerabilities for packages: solr...
GHSA-QWQH-HM9M-P5HR vulnerabilities
Vulnerabilities for packages: solr...
EUVD-2018-0681
Malware in sbrugna...
EUVD-2018-0539
Malware in sbrugna...
EUVD-2025-0137
Malicious code in bioql PyPI...
EUVD-2022-3336
Malicious code in bioql PyPI...
EUVD-2022-3029
Malicious code in bioql PyPI...
EUVD-2022-0662
Malicious code in bioql PyPI...
EUVD-2022-2772
Malicious code in bioql PyPI...
EUVD-2018-0485
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2019-0192
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Apache Solr versions 5.0.0 to 5.5.5 and 6.0.0 to 6.6.5, the Config API allows to configure the JMX server via an HTTP POST request. By pointing it to a...
Linux Distros Unpatched Vulnerability : CVE-2017-3164
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Server Side Request Forgery in Apache Solr, versions 1.3 until 7.6 inclusive. Since the shards parameter does not have a corresponding whitelist mechanism, a...