VulnerableCode Package Details - pkg:maven/org.apache.solr/solr-parent@8.11.1

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-a4yf-9j54-e3cp	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') An Improper Input Validation vulnerability in DataImportHandler of Apache Solr allows an attacker to provide a Windows UNC path resulting in an SMB network call being made from the Solr host to another host on the network. If the attacker has wider access to the network, this may lead to SMB attacks, which may result in: * The exfiltration of sensitive data such as OS user hashes (NTLM/LM hashes), * In case of misconfigured systems, SMB Relay Attacks which can lead to user impersonation on SMB Shares or, in a worse-case scenario, Remote Code Execution This issue affects all Apache Solr This issue only affects Windows.	CVE-2021-44548 GHSA-pccr-q7v9-5f27

Vulnerability

Summary

Aliases

VCID-a4yf-9j54-e3cp

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') An Improper Input Validation vulnerability in DataImportHandler of Apache Solr allows an attacker to provide a Windows UNC path resulting in an SMB network call being made from the Solr host to another host on the network. If the attacker has wider access to the network, this may lead to SMB attacks, which may result in: * The exfiltration of sensitive data such as OS user hashes (NTLM/LM hashes), * In case of misconfigured systems, SMB Relay Attacks which can lead to user impersonation on SMB Shares or, in a worse-case scenario, Remote Code Execution This issue affects all Apache Solr This issue only affects Windows.

CVE-2021-44548
GHSA-pccr-q7v9-5f27

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T21:37:05.821360+00:00	GitLab Importer	Fixing	VCID-a4yf-9j54-e3cp	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-parent/CVE-2021-44548.yml	38.4.0
2026-04-11T22:51:03.726739+00:00	GitLab Importer	Fixing	VCID-a4yf-9j54-e3cp	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-parent/CVE-2021-44548.yml	38.3.0
2026-04-02T23:00:28.649168+00:00	GitLab Importer	Fixing	VCID-a4yf-9j54-e3cp	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-parent/CVE-2021-44548.yml	38.1.0
2026-04-01T15:59:14.760464+00:00	GHSA Importer	Fixing	VCID-a4yf-9j54-e3cp	https://github.com/advisories/GHSA-pccr-q7v9-5f27	38.0.0
2026-04-01T13:05:39.478705+00:00	GithubOSV Importer	Fixing	VCID-a4yf-9j54-e3cp	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/01/GHSA-pccr-q7v9-5f27/GHSA-pccr-q7v9-5f27.json	38.0.0
2026-04-01T12:49:14.446661+00:00	GitLab Importer	Fixing	VCID-a4yf-9j54-e3cp	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-parent/CVE-2021-44548.yml	38.0.0