Bitnami/solr — 23 CVEs

Loading…

All known vulnerabilities

MEDIUM5.3CVE-2023-44487⚠ KEVnghttp2 - security update

from 0, < 9.4.0

CRITICAL9.8CVE-2026-44825Apache Solr: Enabling BasicAuth using bin/solr CLI configures additional insecure users

>= 9.4.0, < 10.0.0 | >= 10.0.0, <= 10.0.0

CRITICAL9.8Improper Authentication vulnerability in Apache Solr

>= 5.3.0, < 8.11.4, >= 9.0.0, < 9.7.0

CRITICAL9.8Incorrect Authorization in Apache Solr

>= 6.6.0, < 6.6.7, >= 7.0.0, < 7.7.4, >= 8.0.0, < 8.6.3

CRITICAL9.8Apache Solr Improper Input Validation and Path Traversal

from 0, < 8.11.1

CRITICAL9.1Incorrect Authorization in Apache Solr

from 0, < 8.8.2

HIGH8.8Apache Solr: Backup/Restore APIs allow for deployment of executables in malicious ConfigSets

>= 6.0.0, < 8.11.3, >= 9.0.0, < 9.4.1

HIGH8.8Improper Input Validation in Apache Solr

from 0, < 8.6.0

HIGH8.8Improper Privilege Management in Apache Hadoop

>= 8.6.0, < 8.6.1, >= 8.6.2, < 8.6.3

HIGH8.2Apache Solr: Unauthorized bypass of certain "predefined permission" rules in the RuleBasedAuthorizationPlugin

>= 5.3.0, < 9.10.1

HIGH8.1Insecure Default Initialization of Resource vulnerability in Apache Solr

>= 6.6.0, < 8.11.4, >= 9.0.0, < 9.7.0

HIGH7.5Apache Solr Schema Designer blindly "trusts" all configsets

>= 6.0.0, < 8.11.3, >= 9.0.0, < 9.4.1

HIGH7.5Apache Solr can leak certain passwords due to System Property redaction logic inconsistencies

>= 6.0.0, < 8.11.3, >= 9.0.0, < 9.3.0

HIGH7.5Apache Solr's Streaming Expressions allow users to extract data from other Solr Clouds

>= 6.0.0, < 8.11.3, >= 9.0.0, < 9.4.1

HIGH7.5libjdom1-java - security update

>= 8.8.1, < 8.8.2, >= 8.9.0, < 8.9.1

HIGH7.5Improper permission handling in Apache Solr

from 0, < 8.8.2

HIGH7.1Apache Solr: Insufficient file-access checking in standalone core-creation requests

>= 8.6.0, < 9.10.1

HIGH7.1Server-Side Request Forgery in Apache Solr

from 0, < 8.8.2

MEDIUM6.5Apache Solr allows read access to host environmet variables

>= 9.0.0, < 9.3.0

MEDIUM5.5Apache Solr vulnerable to Execution with Unnecessary Privileges

from 0, < 9.8.0

MEDIUM5.4Apache Solr Relative Path Traversal vulnerability

>= 6.6.0, < 9.8.0

MEDIUM5.3DOS vulnerability for Quoted Quality CSV headers

>= 8.8.1, < 8.8.2

LOW2.7Directory exposure in jetty

>= 8.8.1, < 8.8.2

pkg:Bitnami/solr

✅ Check your installed version

All known vulnerabilities