Solr@* Security Vulnerabilities and Issues — Solr@* CVE List

Lucene search

ApacheSolr*

9 matches found

CVE•added 2023/10/10 2:15 p.m.•4743 views

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

7.5CVSS8AI score0.94422EPSS

In wildWeb

CVE•added 2019/08/01 2:15 p.m.•1160 views

CVE-2019-0193

In Apache Solr, the DataImportHandler, an optional but popular module to pull in data from databases and other sources, has a feature in which the whole DIH configuration can come from a request's "dataConfig" parameter. The debug mode of the DIH admin screen uses this to allow convenient debugging...

9CVSS6.8AI score0.93129EPSS

In wild

CVE•added 2021/04/13 7:15 a.m.•291 views

CVE-2021-27905

The ReplicationHandler (normally registered at "/replication" under a Solr core) in Apache Solr has a "masterUrl" (also "leaderUrl" alias) parameter that is used to designate another ReplicationHandler on another Solr core to replicate index data into the local core. To prevent a SSRF vulnerability...

9.8CVSS9.1AI score0.94135EPSS

In wildWeb

CVE•added 2021/04/13 7:15 a.m.•145 views

CVE-2021-29262

When starting Apache Solr versions prior to 8.8.2, configured with the SaslZkACLProvider or VMParamsAllAndReadonlyDigestZkACLProvider and no existing security.json znode, if the optional read-only user is configured then Solr would not treat that node as a sensitive path and would allow it to be re...

7.5CVSS7.4AI score0.26231EPSS

CVE•added 2020/08/17 1:15 p.m.•144 views

CVE-2020-13941

Reported in SOLR-14515 (private) and fixed in SOLR-14561 (public), released in Solr version 8.6.0. The Replication handler (https://lucene.apache.org/solr/guide/8_6/index-replication.html#http-api-commands-for-the-replicationhandler) allows commands backup, restore and deleteBackup. Each of these t...

8.8CVSS8.6AI score0.02001EPSS

CVE•added 2021/04/13 7:15 a.m.•144 views

CVE-2021-29943

When using ConfigurableInternodeAuthHadoopPlugin for authentication, Apache Solr versions prior to 8.8.2 would forward/proxy distributed requests using server credentials instead of original client credentials. This would result in incorrect authorization resolution on the receiving hosts.

9.1CVSS9.1AI score0.058EPSS

CVE•added 2021/12/23 9:15 a.m.•106 views

CVE-2021-44548

An Improper Input Validation vulnerability in DataImportHandler of Apache Solr allows an attacker to provide a Windows UNC path resulting in an SMB network call being made from the Solr host to another host on the network. If the attacker has wider access to the network, this may lead to SMB attack...

9.8CVSS9.6AI score0.05762EPSS

CVE•added 2025/01/27 9:15 a.m.•85 views

CVE-2025-24814

Core creation allows users to replace "trusted" configset files with arbitrary configuration Solr instances that (1) use the "FileSystemConfigSetService" component (the default in "standalone" or "user-managed" mode), and (2) are running without authentication and authorization are vulnerable to a ...

5.5CVSS7.2AI score0.0013EPSS

CVE•added 2020/04/01 10:15 p.m.•65 views

CVE-2018-11802

In Apache Solr, the cluster can be partitioned into multiple collections and only a subset of nodes actually host any given collection. However, if a node receives a request for a collection it does not host, it proxies the request to a relevant node and serves the request. Solr bypasses all author...

4.3CVSS4.2AI score0.00151EPSS