Apache Solr

Severity: Moderate Versions Affected: Solr Operator 0.3.0 to 0.8.0 Description: Insertion of Sensitive Information into Log File vulnerability in the Apache Solr Operator. The Solr sked to bootstrap Solr security, the operator will enable basic authentication and create several accounts for accessing Solr: including the "solr …

The Solr PMC is pleased to announce the release of Apache Solr 9.5.0. Solr is the popular, blazing fast, open source NoSQL search platform from the Apache Solr project. Its major features include powerful full-text search, hit highlighting, faceted search, dynamic clustering, database integration, rich document handling, and …

Severity: Moderate Versions Affected: Apache Solr 6.0.0 through 8.11.2 Apache Solr 9.0.0 before 9.3.0 Description: Insufficiently Protected Credentials vulnerability in Apache Solr. This issue affects Apache Solr: from 6.0.0 through 8.11.2, from 9.0.0 before 9.3 …

The Lucene and Solr PMCs are pleased to announce the release of Apache Solr 8.11.3. Solr is the popular, blazing fast, open source NoSQL search platform from the Apache Lucene project. Its major features include powerful full-text search, hit highlighting, faceted search, dynamic clustering, database integration, rich document …

Severity: Low Versions Affected: Apache Solr 6.0.0 through 8.11.2 Apache Solr 9.0.0 before 9.4.1 Description: Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Solr.This issue affects Apache Solr: from 6.0.0 through 8.11.2, from 9 …

Severity: Moderate Versions Affected: Apache Solr 6.0.0 through 8.11.2 Apache Solr 9.0.0 before 9.4.1 Description: Improper Control of Dynamically-Managed Code Resources, Unrestricted Upload of File with Dangerous Type, Inclusion of Functionality from Untrusted Control Sphere vulnerability in Apache Solr.This issue affects …

Severity: Moderate Versions Affected: Apache Solr 6.0.0 through 8.11.2 Apache Solr 9.0.0 before 9.3.0 Description: Incorrect Permission Assignment for Critical Resource, Improper Control of Dynamically-Managed Code Resources vulnerability in Apache Solr. This issue affects Apache Solr: from 8.10.0 through 8 …

The Solr PMC is pleased to announce the release of Apache Solr 9.4.1. Solr is the popular, blazing fast, open source NoSQL search platform from the Apache Solr project. Its major features include powerful full-text search, hit highlighting, faceted search, dynamic clustering, database integration, rich document handling, and …

Severity: Important Versions Affected: Solr 9.0 to 9.2.1 Description: Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Solr. The Solr Metrics API publishes all unprotected environment variables available to each Apache Solr instance. Users are able to specify which environment variables to hide, however …

The Solr PMC is pleased to announce the release of Apache Solr 9.4.0. Solr is the popular, blazing fast, open source NoSQL search platform from the Apache Solr project. Its major features include powerful full-text search, hit highlighting, faceted search, dynamic clustering, database integration, rich document handling, and …