org.apache.solr:solr-solrj

Maven2 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting org.apache.solr:solr-solrjpage 1 of 1

CVE-2020-13957CRITICALCVSS 9.8EG 9.8✓ Fixed in 8.6.3
2020-10-13
vulnerable: 6.6.0 ... 8.6.2 (35 versions)
Apache Solr versions 6.6.0 to 6.6.6, 7.0.0 to 7.7.3 and 8.0.0 to 8.6.2 prevents some features considered dangerous (which could be used for remote code execution) to be configured in a ConfigSet that's uploaded via API without authenticati…
CVE-2023-50298HIGHCVSS 7.5EG 7.5✓ Fixed in 8.11.3
2024-02-09
vulnerable: 6.0.0 ... 8.9.0 (57 versions)
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Solr.This issue affects Apache Solr: from 6.0.0 through 8.11.2, from 9.0.0 before 9.4.1. Solr Streaming Expressions allows users to extract data from other…

Check whether org.apache.solr:solr-solrj is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for org.apache.solr:solr-solrj CVEs against the assets you own.

Start Free Scan →