pkg:Debian/lucene-solr

25 total CVEsCRITICAL3HIGH16MEDIUM1

✅ Check your installed version

All known vulnerabilities

  • HIGH7.5CVE-2019-17558⚠ KEVImproper Input Validation in Apache Solr
    from 0
  • HIGH7.2CVE-2019-0193⚠ KEVXML External Entity (XXE) Injection in Apache Solr
    from 0, < 3.6.2+dfsg-10+deb9u3
  • HIGH7.2CVE-2019-0193⚠ KEVXML External Entity (XXE) Injection in Apache Solr
    from 0, < 3.6.2+dfsg-5+deb8u3
  • HIGH7.2CVE-2019-0193⚠ KEVXML External Entity (XXE) Injection in Apache Solr
    from 0, < 3.6.2+dfsg-22
  • CRITICAL9.8CVE-2017-12629lucene-solr - security update
    from 0, < 3.6.2+dfsg-11
  • CRITICAL9.8CVE-2017-12629lucene-solr - security update
    from 0, < 3.6.0+dfsg-1+deb7u3
  • CRITICAL9.8CVE-2017-12629lucene-solr - security update
    from 0, < 3.6.2+dfsg-5+deb8u1
  • HIGH8.8CVE-2023-50386Apache Solr: Backup/Restore APIs allow for deployment of executables in malicious ConfigSets
    from 0, < 3.6.2+dfsg-23
  • HIGH8.8CVE-2020-13941Improper Input Validation in Apache Solr
    from 0, < 3.6.2+dfsg-23
  • HIGH7.5CVE-2023-50292Apache Solr Schema Designer blindly "trusts" all configsets
    from 0, < 3.6.2+dfsg-23
  • HIGH7.5CVE-2023-50298Apache Solr's Streaming Expressions allow users to extract data from other Solr Clouds
    from 0, < 3.6.2+dfsg-23
  • HIGH7.5CVE-2023-50291Apache Solr can leak certain passwords due to System Property redaction logic inconsistencies
    from 0, < 3.6.2+dfsg-23
  • HIGH7.5CVE-2017-3164Server-Side Request Forgery (SSRF) in org.apache.solr:solr-core
    from 0
  • HIGH7.5CVE-2017-3163Improper Limitation of a Pathname ('Path Traversal') in org.apache.solr:solr-core
    from 0, < 3.6.0+dfsg-1+deb7u2
  • HIGH7.5CVE-2017-3163Improper Limitation of a Pathname ('Path Traversal') in org.apache.solr:solr-core
    from 0, < 3.6.2+dfsg-11
  • HIGH7.5CVE-2018-1308There is a XML external entity expansion (XXE) vulnerability in Apache Solr
    from 0, < 3.6.2+dfsg-5+deb8u2
  • HIGH7.5CVE-2018-1308There is a XML external entity expansion (XXE) vulnerability in Apache Solr
    from 0, < 3.6.2+dfsg-12
  • HIGH7.5CVE-2018-1308There is a XML external entity expansion (XXE) vulnerability in Apache Solr
    from 0, < 3.6.0+dfsg-1+deb7u4
  • HIGH7.1CVE-2021-27905Server-Side Request Forgery in Apache Solr
    from 0, < 3.6.2+dfsg-23
  • MEDIUM5.5CVE-2025-24814Apache Solr vulnerable to Execution with Unnecessary Privileges
    from 0, < 3.6.2+dfsg-23
  • CVE-2012-6612Improper Restriction of XML External Entity Reference in Apache Solr
    from 0, < 3.6.2+dfsg-2
  • CVE-2012-6612Improper Restriction of XML External Entity Reference in Apache Solr
    from 0, < 3.6.0+dfsg-1+deb7u1
  • CVE-2013-6408XML Injection in Apache Solr
    from 0, < 3.6.2+dfsg-2
  • CVE-2013-6407Apache Solr UpdateRequestHandler for XML resolves XML External Entities
    from 0, < 3.6.2+dfsg-2
  • CVE-2013-6397Improper Limitation of a Pathname to a Restricted Directory in Apache Solr
    from 0, < 3.6.2+dfsg-2