Lucene search
+L

7 matches found

Nuclei
Nuclei
added 2026/07/11 12:22 a.m.47 views

Apache Solr - Authentication Bypass

Solr instances using the PKIAuthenticationPlugin, which is enabled by default when Solr Authentication is used, are vulnerable to Authentication bypass.A fake ending at the end of any Solr API URL path, will allow requests to skip Authentication while maintaining the API contract with the origina...

9.8CVSS7.1AI score0.90709EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-45216

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper Authentication vulnerability in Apache Solr. Solr instances using the PKIAuthenticationPlugin, which is enabled by default when Solr Authentication is...

9.8CVSS7.1AI score0.90709EPSS
Exploits1References2
The Hacker News
The Hacker News
added 2024/10/17 5:18 a.m.45 views

Critical Kubernetes Image Builder Vulnerability Exposes Nodes to Root Access Risk

A critical security flaw has been disclosed in the Kubernetes Image Builder that, if successfully exploited, could be abused to gain root access under certain circumstances. The vulnerability, tracked as CVE-2024-9486 CVSS score: 9.8, has been addressed in version 0.1.38. The project maintainers...

9.8CVSS7.8AI score0.90709EPSS
Exploits1
NVD
NVD
added 2024/10/16 8:15 a.m.21 views

CVE-2024-45216

Improper Authentication vulnerability in Apache Solr. Solr instances using the PKIAuthenticationPlugin, which is enabled by default when Solr Authentication is used, are vulnerable to Authentication bypass. A fake ending at the end of any Solr API URL path, will allow requests to skip...

9.8CVSS0.90709EPSS
Exploits1References2
CVE
CVE
added 2024/10/16 7:50 a.m.226 views

CVE-2024-45216

CVE-2024-45216 concerns Apache Solr and an authentication bypass when PKIAuthenticationPlugin is used. A forged URL ending appended to any Solr API path can bypass authentication while preserving the intended API contract. Affected versions include Solr 5.3.0–8.11.3 and 9.0.0–9.6.x (i.e., before ...

9.8CVSS9.6AI score0.90709EPSS
In wildExploits1References2Affected Software1
Cvelist
Cvelist
added 2024/10/16 7:50 a.m.44 views

CVE-2024-45216 Apache Solr: Authentication bypass possible using a fake URL Path ending

Improper Authentication vulnerability in Apache Solr. Solr instances using the PKIAuthenticationPlugin, which is enabled by default when Solr Authentication is used, are vulnerable to Authentication bypass. A fake ending at the end of any Solr API URL path, will allow requests to skip...

0.90709EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2024/10/16 7:50 a.m.44 views

CVE-2024-45216

Improper Authentication vulnerability in Apache Solr. Solr instances using the PKIAuthenticationPlugin, which is enabled by default when Solr Authentication is used, are vulnerable to Authentication bypass. A fake ending at the end of any Solr API URL path, will allow requests to skip...

9.8CVSS5.7AI score0.90709EPSS
Exploits1
Rows per page
Query Builder