Search for packages
Package details: pkg:maven/org.apache.solr/solr-core@8.9.0
purl pkg:maven/org.apache.solr/solr-core@8.9.0
Next non-vulnerable version 9.8.0
Latest non-vulnerable version 9.8.0
Risk 10.0
Vulnerabilities affecting this package (6)
Vulnerability Summary Fixed by
VCID-83s4-swg3-aaar
Aliases:
CVE-2023-50386
GHSA-37vr-vmg4-jwpw
Apache Solr: Backup/Restore APIs allow for deployment of executables in malicious ConfigSets
8.11.3
Affected by 2 other vulnerabilities.
9.4.1
Affected by 2 other vulnerabilities.
VCID-9p2g-hkq3-aaan
Aliases:
CVE-2021-44548
GHSA-pccr-q7v9-5f27
Improper Input Validation and Path Traversal in Apache Solr
8.11.1
Affected by 6 other vulnerabilities.
VCID-fkew-f1ez-aaaq
Aliases:
CVE-2023-50291
GHSA-3hwc-rqwp-v36q
Apache Solr can leak certain passwords due to System Property redaction logic inconsistencies
8.11.3
Affected by 2 other vulnerabilities.
9.3.0
Affected by 4 other vulnerabilities.
VCID-mgtc-1e6f-3bhg
Aliases:
CVE-2024-52012
GHSA-4p5m-gvpf-f3x5
Relative Path Traversal vulnerability in Apache Solr. Solr instances running on Windows are vulnerable to arbitrary filepath write-access, due to a lack of input-sanitation in the "configset upload" API.  Commonly known as a "zipslip", maliciously constructed ZIP files can use relative filepaths to write data to unanticipated parts of the filesystem.   This issue affects Apache Solr: from 6.6 through 9.7.0. Users are recommended to upgrade to version 9.8.0, which fixes the issue.  Users unable to upgrade may also safely prevent the issue by using Solr's "Rule-Based Authentication Plugin" to restrict access to the configset upload API, so that it can only be accessed by a trusted set of administrators/users.
9.8.0
Affected by 0 other vulnerabilities.
VCID-vj8s-sv5u-aaaf
Aliases:
CVE-2023-50298
GHSA-xrj7-x7gp-wwqr
Apache Solr's Streaming Expressions allow users to extract data from other Solr Clouds
8.11.3
Affected by 2 other vulnerabilities.
9.4.1
Affected by 2 other vulnerabilities.
VCID-x6bt-nsqt-gfg2
Aliases:
CVE-2025-24814
GHSA-68r2-fwcg-qpm8
solr: org.apache.solr: Apache Solr: Core-creation with "trusted" configset can use arbitrary untrusted files
9.8.0
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T17:15:28.731517+00:00 GitLab Importer Affected by VCID-x6bt-nsqt-gfg2 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2025-24814.yml 36.1.3
2025-06-20T17:15:28.308820+00:00 GitLab Importer Affected by VCID-mgtc-1e6f-3bhg https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2024-52012.yml 36.1.3
2025-06-20T16:52:46.535152+00:00 GitLab Importer Affected by VCID-fkew-f1ez-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50291.yml 36.1.3
2025-06-20T16:52:43.054670+00:00 GitLab Importer Affected by VCID-vj8s-sv5u-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50298.yml 36.1.3
2025-06-20T16:52:42.647955+00:00 GitLab Importer Affected by VCID-83s4-swg3-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50386.yml 36.1.3
2025-06-20T15:24:09.543946+00:00 GitLab Importer Affected by VCID-9p2g-hkq3-aaan None 36.1.3
2025-06-20T15:24:08.132809+00:00 GitLab Importer Affected by VCID-9p2g-hkq3-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2021-44548.yml 36.1.3
2025-06-03T23:50:50.454561+00:00 GitLab Importer Affected by VCID-x6bt-nsqt-gfg2 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2025-24814.yml 36.1.0
2025-06-03T23:50:50.092651+00:00 GitLab Importer Affected by VCID-mgtc-1e6f-3bhg https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2024-52012.yml 36.1.0
2025-06-03T23:30:01.405727+00:00 GitLab Importer Affected by VCID-fkew-f1ez-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50291.yml 36.1.0
2025-06-03T23:29:58.798713+00:00 GitLab Importer Affected by VCID-vj8s-sv5u-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50298.yml 36.1.0
2025-06-03T23:29:58.538378+00:00 GitLab Importer Affected by VCID-83s4-swg3-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50386.yml 36.1.0
2025-06-03T22:05:44.538461+00:00 GitLab Importer Affected by VCID-9p2g-hkq3-aaan None 36.1.0
2025-06-03T22:05:43.273116+00:00 GitLab Importer Affected by VCID-9p2g-hkq3-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2021-44548.yml 36.1.0
2025-06-02T23:49:37.956615+00:00 GitLab Importer Affected by VCID-x6bt-nsqt-gfg2 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2025-24814.yml 36.1.2
2025-06-02T23:49:37.533609+00:00 GitLab Importer Affected by VCID-mgtc-1e6f-3bhg https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2024-52012.yml 36.1.2
2025-06-02T23:27:45.969077+00:00 GitLab Importer Affected by VCID-fkew-f1ez-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50291.yml 36.1.2
2025-06-02T23:27:43.066077+00:00 GitLab Importer Affected by VCID-vj8s-sv5u-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50298.yml 36.1.2
2025-06-02T23:27:42.801357+00:00 GitLab Importer Affected by VCID-83s4-swg3-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50386.yml 36.1.2
2025-06-02T21:52:26.004852+00:00 GitLab Importer Affected by VCID-9p2g-hkq3-aaan None 36.1.2
2025-06-02T21:52:24.588737+00:00 GitLab Importer Affected by VCID-9p2g-hkq3-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2021-44548.yml 36.1.2
2025-04-03T22:39:51.366439+00:00 GitLab Importer Affected by VCID-x6bt-nsqt-gfg2 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2025-24814.yml 36.0.0
2025-04-03T22:39:49.981438+00:00 GitLab Importer Affected by VCID-mgtc-1e6f-3bhg https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2024-52012.yml 36.0.0
2025-04-03T21:55:04.304877+00:00 GitLab Importer Affected by VCID-fkew-f1ez-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50291.yml 36.0.0
2025-04-03T21:54:56.670951+00:00 GitLab Importer Affected by VCID-vj8s-sv5u-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50298.yml 36.0.0
2025-04-03T21:54:56.059888+00:00 GitLab Importer Affected by VCID-83s4-swg3-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50386.yml 36.0.0
2025-04-03T19:05:54.947066+00:00 GitLab Importer Affected by VCID-9p2g-hkq3-aaan None 36.0.0
2025-04-03T19:05:52.585797+00:00 GitLab Importer Affected by VCID-9p2g-hkq3-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2021-44548.yml 36.0.0
2025-02-18T03:42:00.710866+00:00 GitLab Importer Affected by VCID-83s4-swg3-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50386.yml 35.1.0
2025-02-18T03:41:58.961716+00:00 GitLab Importer Affected by VCID-fkew-f1ez-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50291.yml 35.1.0
2025-02-18T01:06:03.843948+00:00 GitLab Importer Affected by VCID-vj8s-sv5u-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50298.yml 35.1.0
2025-02-18T00:30:45.279864+00:00 GitLab Importer Affected by VCID-9p2g-hkq3-aaan None 35.1.0
2025-02-18T00:30:44.152518+00:00 GitLab Importer Affected by VCID-9p2g-hkq3-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2021-44548.yml 35.1.0
2024-11-21T00:59:53.524828+00:00 GitLab Importer Affected by VCID-83s4-swg3-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50386.yml 35.0.0
2024-11-21T00:59:52.429958+00:00 GitLab Importer Affected by VCID-fkew-f1ez-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50291.yml 35.0.0
2024-11-20T23:31:00.932302+00:00 GitLab Importer Affected by VCID-vj8s-sv5u-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50298.yml 35.0.0
2024-11-20T23:13:51.308974+00:00 GitLab Importer Affected by VCID-9p2g-hkq3-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2021-44548.yml 35.0.0
2024-11-19T00:48:31.426034+00:00 GitLab Importer Affected by VCID-83s4-swg3-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50386.yml 34.3.2
2024-11-19T00:48:30.351460+00:00 GitLab Importer Affected by VCID-fkew-f1ez-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50291.yml 34.3.2
2024-11-18T23:19:53.255702+00:00 GitLab Importer Affected by VCID-vj8s-sv5u-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50298.yml 34.3.2
2024-11-18T23:01:28.755656+00:00 GitLab Importer Affected by VCID-9p2g-hkq3-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2021-44548.yml 34.3.2
2024-10-08T01:20:26.111954+00:00 GitLab Importer Affected by VCID-83s4-swg3-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50386.yml 34.0.2
2024-10-08T01:20:25.108888+00:00 GitLab Importer Affected by VCID-fkew-f1ez-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50291.yml 34.0.2
2024-10-08T00:17:17.399337+00:00 GitLab Importer Affected by VCID-vj8s-sv5u-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50298.yml 34.0.2
2024-10-08T00:00:31.366051+00:00 GitLab Importer Affected by VCID-9p2g-hkq3-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2021-44548.yml 34.0.2
2024-10-07T21:49:09.284953+00:00 GHSA Importer Affected by VCID-83s4-swg3-aaar https://github.com/advisories/GHSA-37vr-vmg4-jwpw 34.0.2
2024-10-07T21:49:07.626054+00:00 GHSA Importer Affected by VCID-fkew-f1ez-aaaq https://github.com/advisories/GHSA-3hwc-rqwp-v36q 34.0.2
2024-09-23T01:25:53.614054+00:00 GitLab Importer Affected by VCID-83s4-swg3-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50386.yml 34.0.1
2024-09-23T01:25:52.701434+00:00 GitLab Importer Affected by VCID-fkew-f1ez-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50291.yml 34.0.1
2024-09-23T00:31:16.910998+00:00 GitLab Importer Affected by VCID-vj8s-sv5u-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50298.yml 34.0.1
2024-09-23T00:14:22.545372+00:00 GitLab Importer Affected by VCID-9p2g-hkq3-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2021-44548.yml 34.0.1
2024-09-22T22:18:29.335198+00:00 GHSA Importer Affected by VCID-83s4-swg3-aaar https://github.com/advisories/GHSA-37vr-vmg4-jwpw 34.0.1
2024-09-22T22:18:27.706245+00:00 GHSA Importer Affected by VCID-fkew-f1ez-aaaq https://github.com/advisories/GHSA-3hwc-rqwp-v36q 34.0.1
2024-05-17T21:00:58.857300+00:00 GHSA Importer Affected by VCID-83s4-swg3-aaar https://github.com/advisories/GHSA-37vr-vmg4-jwpw 34.0.0rc4
2024-05-17T21:00:56.807758+00:00 GHSA Importer Affected by VCID-fkew-f1ez-aaaq https://github.com/advisories/GHSA-3hwc-rqwp-v36q 34.0.0rc4
2024-04-24T03:58:26.647173+00:00 GitLab Importer Affected by VCID-83s4-swg3-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50386.yml 34.0.0rc4
2024-04-24T03:58:25.503908+00:00 GitLab Importer Affected by VCID-fkew-f1ez-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50291.yml 34.0.0rc4
2024-04-24T02:42:11.185789+00:00 GitLab Importer Affected by VCID-vj8s-sv5u-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2023-50298.yml 34.0.0rc4
2024-04-24T02:19:22.276705+00:00 GitLab Importer Affected by VCID-9p2g-hkq3-aaan None 34.0.0rc4
2024-04-24T02:19:21.659887+00:00 GitLab Importer Affected by VCID-9p2g-hkq3-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2021-44548.yml 34.0.0rc4
2024-01-10T04:53:55.053909+00:00 GitLab Importer Affected by VCID-9p2g-hkq3-aaan None 34.0.0rc2
2024-01-10T04:53:54.452287+00:00 GitLab Importer Affected by VCID-9p2g-hkq3-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2021-44548.yml 34.0.0rc2
2024-01-03T21:41:25.495444+00:00 GitLab Importer Affected by VCID-9p2g-hkq3-aaan None 34.0.0rc1
2024-01-03T21:41:24.895360+00:00 GitLab Importer Affected by VCID-9p2g-hkq3-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.solr/solr-core/CVE-2021-44548.yml 34.0.0rc1