org.apache.solr:solr-core vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-44825Highorg.apache.solr:solr-core: Apache Solr has hardcoded credentials in the Basic Authentication setup toolCVE-2026-22022Highorg.apache.solr:solr-core: Apache Solr: Unauthorized bypass of certain "predefined permission" rules in the RuleBasedAuthorizationPluginCVE-2026-22444Highorg.apache.solr:solr-core: Apache Solr: Insufficient file-access checking in standalone core-creation requestsCVE-2024-52012Mediumorg.apache.solr:solr-core: Apache Solr Relative Path Traversal vulnerabilityCVE-2025-24814Highorg.apache.solr:solr-core: Apache Solr vulnerable to Execution with Unnecessary PrivilegesCVE-2023-50386Highorg.apache.solr:solr-core: Apache Solr: Backup/Restore APIs allow for deployment of executables in malicious ConfigSets CVE-2023-50292Loworg.apache.solr:solr-core: Apache Solr Schema Designer blindly "trusts" all configsetsCVE-2023-50291Highorg.apache.solr:solr-core: Apache Solr can leak certain passwords due to System Property redaction logic inconsistenciesCVE-2023-50290Mediumorg.apache.solr:solr-core: Apache Solr allows read access to host environmet variablesCVE-2019-12401Highorg.apache.solr:solr-core: Apache Solr vulnerable to XML BombCVE-2012-6612Highorg.apache.solr:solr-core: Improper Restriction of XML External Entity Reference in Apache SolrCVE-2013-6408Mediumorg.apache.solr:solr-core: XML Injection in Apache SolrCVE-2013-6407Mediumorg.apache.solr:solr-core: Apache Solr UpdateRequestHandler for XML resolves XML External EntitiesCVE-2013-6397Mediumorg.apache.solr:solr-core: Improper Limitation of a Pathname to a Restricted Directory in Apache SolrCVE-2015-8795Mediumorg.apache.solr:solr-core: Improper Neutralization of Input During Web Page Generation in Apache SolrCVE-2015-8797Mediumorg.apache.solr:solr-core: Improper Neutralization of Input During Web Page Generation in Apache SolrCVE-2017-7660Highorg.apache.solr:solr-core: Apache Solr insecure inter-node communicationCVE-2017-9803Highorg.apache.solr:solr-core: Apache Solr Kerberos delegation token functionality flawsCVE-2020-13957Criticalorg.apache.solr:solr-parent: Incorrect Authorization in Apache SolrCVE-2018-11802Mediumorg.apache.solr:solr-parent: Incorrect Authorization in Apache SolrCVE-2021-29262Highorg.apache.solr:solr-core: Improper permission handling in Apache SolrCVE-2019-17558Highorg.apache.solr:solr-core: Improper Input Validation in Apache SolrCVE-2019-12409Criticalorg.apache.solr:solr-core: Unrestricted upload of file with dangerous type in Apache SolrCVE-2019-0193Highorg.apache.solr:solr-core: XML External Entity (XXE) Injection in Apache SolrCVE-2017-3164Highorg.apache.solr:solr-core: Server-Side Request Forgery (SSRF) in org.apache.solr:solr-core

Stop the waste.
Protect your environment with Kodem.