Search for packages
Package details: pkg:maven/org.apache.solr/solr-core@8.11.1
purl pkg:maven/org.apache.solr/solr-core@8.11.1
Next non-vulnerable version 9.8.0
Latest non-vulnerable version 9.8.0
Risk 10.0
Vulnerabilities affecting this package (6)
Vulnerability Summary Fixed by
VCID-83s4-swg3-aaar
Aliases:
CVE-2023-50386
GHSA-37vr-vmg4-jwpw
Apache Solr: Backup/Restore APIs allow for deployment of executables in malicious ConfigSets
8.11.3
Affected by 2 other vulnerabilities.
9.4.1
Affected by 2 other vulnerabilities.
VCID-fkew-f1ez-aaaq
Aliases:
CVE-2023-50291
GHSA-3hwc-rqwp-v36q
Apache Solr can leak certain passwords due to System Property redaction logic inconsistencies
8.11.3
Affected by 2 other vulnerabilities.
9.3.0
Affected by 4 other vulnerabilities.
VCID-mgtc-1e6f-3bhg
Aliases:
CVE-2024-52012
GHSA-4p5m-gvpf-f3x5
Relative Path Traversal vulnerability in Apache Solr. Solr instances running on Windows are vulnerable to arbitrary filepath write-access, due to a lack of input-sanitation in the "configset upload" API.  Commonly known as a "zipslip", maliciously constructed ZIP files can use relative filepaths to write data to unanticipated parts of the filesystem.   This issue affects Apache Solr: from 6.6 through 9.7.0. Users are recommended to upgrade to version 9.8.0, which fixes the issue.  Users unable to upgrade may also safely prevent the issue by using Solr's "Rule-Based Authentication Plugin" to restrict access to the configset upload API, so that it can only be accessed by a trusted set of administrators/users.
9.8.0
Affected by 0 other vulnerabilities.
VCID-pk1z-x6n7-aaaa
Aliases:
CVE-2023-50292
GHSA-4wxw-42wx-2wfx
Apache Solr Schema Designer blindly "trusts" all configsets
8.11.3
Affected by 2 other vulnerabilities.
9.3.0
Affected by 4 other vulnerabilities.
VCID-vj8s-sv5u-aaaf
Aliases:
CVE-2023-50298
GHSA-xrj7-x7gp-wwqr
Apache Solr's Streaming Expressions allow users to extract data from other Solr Clouds
8.11.3
Affected by 2 other vulnerabilities.
9.4.1
Affected by 2 other vulnerabilities.
VCID-x6bt-nsqt-gfg2
Aliases:
CVE-2025-24814
GHSA-68r2-fwcg-qpm8
solr: org.apache.solr: Apache Solr: Core-creation with "trusted" configset can use arbitrary untrusted files
9.8.0
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-9p2g-hkq3-aaan Improper Input Validation and Path Traversal in Apache Solr CVE-2021-44548
GHSA-pccr-q7v9-5f27

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T17:15:28.738229+00:00 GitLab Importer Affected by VCID-x6bt-nsqt-gfg2 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2025-24814.yml 36.1.3
2025-06-20T17:15:28.315721+00:00 GitLab Importer Affected by VCID-mgtc-1e6f-3bhg https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2024-52012.yml 36.1.3
2025-06-20T16:52:46.835940+00:00 GitLab Importer Affected by VCID-pk1z-x6n7-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50292.yml 36.1.3
2025-06-20T16:52:46.542475+00:00 GitLab Importer Affected by VCID-fkew-f1ez-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50291.yml 36.1.3
2025-06-20T16:52:43.062029+00:00 GitLab Importer Affected by VCID-vj8s-sv5u-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50298.yml 36.1.3
2025-06-20T16:52:42.655259+00:00 GitLab Importer Affected by VCID-83s4-swg3-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50386.yml 36.1.3
2025-06-20T15:24:09.551686+00:00 GitLab Importer Fixing VCID-9p2g-hkq3-aaan None 36.1.3
2025-06-20T15:24:08.139735+00:00 GitLab Importer Fixing VCID-9p2g-hkq3-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2021-44548.yml 36.1.3
2025-06-03T23:50:50.460605+00:00 GitLab Importer Affected by VCID-x6bt-nsqt-gfg2 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2025-24814.yml 36.1.0
2025-06-03T23:50:50.098600+00:00 GitLab Importer Affected by VCID-mgtc-1e6f-3bhg https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2024-52012.yml 36.1.0
2025-06-03T23:30:01.590778+00:00 GitLab Importer Affected by VCID-pk1z-x6n7-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50292.yml 36.1.0
2025-06-03T23:30:01.411805+00:00 GitLab Importer Affected by VCID-fkew-f1ez-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50291.yml 36.1.0
2025-06-03T23:29:58.804799+00:00 GitLab Importer Affected by VCID-vj8s-sv5u-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50298.yml 36.1.0
2025-06-03T23:29:58.544436+00:00 GitLab Importer Affected by VCID-83s4-swg3-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50386.yml 36.1.0
2025-06-03T22:05:44.544577+00:00 GitLab Importer Fixing VCID-9p2g-hkq3-aaan None 36.1.0
2025-06-03T22:05:43.280670+00:00 GitLab Importer Fixing VCID-9p2g-hkq3-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2021-44548.yml 36.1.0
2025-06-02T23:49:37.963115+00:00 GitLab Importer Affected by VCID-x6bt-nsqt-gfg2 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2025-24814.yml 36.1.2
2025-06-02T23:49:37.540923+00:00 GitLab Importer Affected by VCID-mgtc-1e6f-3bhg https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2024-52012.yml 36.1.2
2025-06-02T23:27:46.164969+00:00 GitLab Importer Affected by VCID-pk1z-x6n7-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50292.yml 36.1.2
2025-06-02T23:27:45.975684+00:00 GitLab Importer Affected by VCID-fkew-f1ez-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50291.yml 36.1.2
2025-06-02T23:27:43.073163+00:00 GitLab Importer Affected by VCID-vj8s-sv5u-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50298.yml 36.1.2
2025-06-02T23:27:42.807459+00:00 GitLab Importer Affected by VCID-83s4-swg3-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50386.yml 36.1.2
2025-06-02T21:52:26.013261+00:00 GitLab Importer Fixing VCID-9p2g-hkq3-aaan None 36.1.2
2025-06-02T21:52:24.596611+00:00 GitLab Importer Fixing VCID-9p2g-hkq3-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2021-44548.yml 36.1.2
2025-04-03T22:39:51.388021+00:00 GitLab Importer Affected by VCID-x6bt-nsqt-gfg2 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2025-24814.yml 36.0.0
2025-04-03T22:39:50.004963+00:00 GitLab Importer Affected by VCID-mgtc-1e6f-3bhg https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2024-52012.yml 36.0.0
2025-04-03T21:55:04.871039+00:00 GitLab Importer Affected by VCID-pk1z-x6n7-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50292.yml 36.0.0
2025-04-03T21:55:04.324975+00:00 GitLab Importer Affected by VCID-fkew-f1ez-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50291.yml 36.0.0
2025-04-03T21:54:56.690919+00:00 GitLab Importer Affected by VCID-vj8s-sv5u-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50298.yml 36.0.0
2025-04-03T21:54:56.079826+00:00 GitLab Importer Affected by VCID-83s4-swg3-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50386.yml 36.0.0
2025-04-03T19:05:54.966588+00:00 GitLab Importer Fixing VCID-9p2g-hkq3-aaan None 36.0.0
2025-04-03T19:05:52.605421+00:00 GitLab Importer Fixing VCID-9p2g-hkq3-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2021-44548.yml 36.0.0
2025-02-18T03:42:00.730144+00:00 GitLab Importer Affected by VCID-83s4-swg3-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50386.yml 35.1.0
2025-02-18T03:41:59.509276+00:00 GitLab Importer Affected by VCID-pk1z-x6n7-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50292.yml 35.1.0
2025-02-18T03:41:58.981195+00:00 GitLab Importer Affected by VCID-fkew-f1ez-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50291.yml 35.1.0
2025-02-18T01:06:03.863333+00:00 GitLab Importer Affected by VCID-vj8s-sv5u-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50298.yml 35.1.0
2025-02-18T00:30:45.299262+00:00 GitLab Importer Fixing VCID-9p2g-hkq3-aaan None 35.1.0
2025-02-18T00:30:44.172370+00:00 GitLab Importer Fixing VCID-9p2g-hkq3-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2021-44548.yml 35.1.0
2024-11-21T00:59:53.544198+00:00 GitLab Importer Affected by VCID-83s4-swg3-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50386.yml 35.0.0
2024-11-21T00:59:52.615011+00:00 GitLab Importer Affected by VCID-pk1z-x6n7-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50292.yml 35.0.0
2024-11-21T00:59:52.449574+00:00 GitLab Importer Affected by VCID-fkew-f1ez-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50291.yml 35.0.0
2024-11-20T23:31:00.953422+00:00 GitLab Importer Affected by VCID-vj8s-sv5u-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50298.yml 35.0.0
2024-11-20T23:13:51.329280+00:00 GitLab Importer Fixing VCID-9p2g-hkq3-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2021-44548.yml 35.0.0
2024-11-19T00:48:31.445793+00:00 GitLab Importer Affected by VCID-83s4-swg3-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50386.yml 34.3.2
2024-11-19T00:48:30.523814+00:00 GitLab Importer Affected by VCID-pk1z-x6n7-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50292.yml 34.3.2
2024-11-19T00:48:30.371461+00:00 GitLab Importer Affected by VCID-fkew-f1ez-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50291.yml 34.3.2
2024-11-18T23:19:53.275445+00:00 GitLab Importer Affected by VCID-vj8s-sv5u-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50298.yml 34.3.2
2024-11-18T23:01:28.775537+00:00 GitLab Importer Fixing VCID-9p2g-hkq3-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2021-44548.yml 34.3.2
2024-10-08T01:20:26.131340+00:00 GitLab Importer Affected by VCID-83s4-swg3-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50386.yml 34.0.2
2024-10-08T01:20:25.287495+00:00 GitLab Importer Affected by VCID-pk1z-x6n7-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50292.yml 34.0.2
2024-10-08T01:20:25.128595+00:00 GitLab Importer Affected by VCID-fkew-f1ez-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50291.yml 34.0.2
2024-10-08T00:17:17.418973+00:00 GitLab Importer Affected by VCID-vj8s-sv5u-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50298.yml 34.0.2
2024-10-08T00:00:31.385840+00:00 GitLab Importer Fixing VCID-9p2g-hkq3-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2021-44548.yml 34.0.2
2024-10-07T21:49:09.304279+00:00 GHSA Importer Affected by VCID-83s4-swg3-aaar https://github.com/advisories/GHSA-37vr-vmg4-jwpw 34.0.2
2024-10-07T21:49:07.959256+00:00 GHSA Importer Affected by VCID-pk1z-x6n7-aaaa https://github.com/advisories/GHSA-4wxw-42wx-2wfx 34.0.2
2024-10-07T21:49:07.644876+00:00 GHSA Importer Affected by VCID-fkew-f1ez-aaaq https://github.com/advisories/GHSA-3hwc-rqwp-v36q 34.0.2
2024-09-23T01:25:53.633268+00:00 GitLab Importer Affected by VCID-83s4-swg3-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50386.yml 34.0.1
2024-09-23T01:25:52.872981+00:00 GitLab Importer Affected by VCID-pk1z-x6n7-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50292.yml 34.0.1
2024-09-23T01:25:52.720475+00:00 GitLab Importer Affected by VCID-fkew-f1ez-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50291.yml 34.0.1
2024-09-23T00:31:16.930161+00:00 GitLab Importer Affected by VCID-vj8s-sv5u-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50298.yml 34.0.1
2024-09-22T22:18:29.354872+00:00 GHSA Importer Affected by VCID-83s4-swg3-aaar https://github.com/advisories/GHSA-37vr-vmg4-jwpw 34.0.1
2024-09-22T22:18:28.036218+00:00 GHSA Importer Affected by VCID-pk1z-x6n7-aaaa https://github.com/advisories/GHSA-4wxw-42wx-2wfx 34.0.1
2024-09-22T22:18:27.725647+00:00 GHSA Importer Affected by VCID-fkew-f1ez-aaaq https://github.com/advisories/GHSA-3hwc-rqwp-v36q 34.0.1
2024-09-17T22:40:26.019534+00:00 GitLab Importer Fixing VCID-9p2g-hkq3-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2021-44548.yml 34.0.1
2024-05-17T21:00:58.876326+00:00 GHSA Importer Affected by VCID-83s4-swg3-aaar https://github.com/advisories/GHSA-37vr-vmg4-jwpw 34.0.0rc4
2024-05-17T21:00:57.082203+00:00 GHSA Importer Affected by VCID-pk1z-x6n7-aaaa https://github.com/advisories/GHSA-4wxw-42wx-2wfx 34.0.0rc4
2024-05-17T21:00:56.826810+00:00 GHSA Importer Affected by VCID-fkew-f1ez-aaaq https://github.com/advisories/GHSA-3hwc-rqwp-v36q 34.0.0rc4
2024-04-24T03:58:26.667802+00:00 GitLab Importer Affected by VCID-83s4-swg3-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50386.yml 34.0.0rc4
2024-04-24T03:58:25.719486+00:00 GitLab Importer Affected by VCID-pk1z-x6n7-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50292.yml 34.0.0rc4
2024-04-24T03:58:25.524552+00:00 GitLab Importer Affected by VCID-fkew-f1ez-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50291.yml 34.0.0rc4
2024-04-24T02:42:11.206438+00:00 GitLab Importer Affected by VCID-vj8s-sv5u-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50298.yml 34.0.0rc4
2024-04-24T02:19:22.295499+00:00 GitLab Importer Fixing VCID-9p2g-hkq3-aaan None 34.0.0rc4
2024-04-24T02:19:21.679321+00:00 GitLab Importer Fixing VCID-9p2g-hkq3-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2021-44548.yml 34.0.0rc4
2024-01-10T04:53:55.072439+00:00 GitLab Importer Fixing VCID-9p2g-hkq3-aaan None 34.0.0rc2
2024-01-10T04:53:54.470759+00:00 GitLab Importer Fixing VCID-9p2g-hkq3-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2021-44548.yml 34.0.0rc2
2024-01-03T21:41:25.513935+00:00 GitLab Importer Fixing VCID-9p2g-hkq3-aaan None 34.0.0rc1
2024-01-03T18:02:51.661905+00:00 GitLab Importer Fixing VCID-9p2g-hkq3-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2021-44548.yml 34.0.0rc1