Execution with Unnecessary Privileges in org.apache.solr:solr-core | CVE-2025-24814

Q: How to fix?

Upgrade org.apache.solr:solr-core to version 9.8.0 or higher.

Introduced: 27 Jan 2025

NewCVE-2025-24814 (opens in a new tab) CWE-250 (opens in a new tab)

How to fix?

Upgrade org.apache.solr:solr-core to version 9.8.0 or higher.

Overview

org.apache.solr:solr-core is an open source enterprise search platform built on Apache Lucene

Affected versions of this package are vulnerable to Execution with Unnecessary Privileges due to the potential for attackers to control what configset is loaded by the FileSystemConfigSetService component (in use by default in standalone and user-managed modes) during core creation. A trusted config can be replaced by a malicious one, which specifies arbitrary classes as <lib> elements, which will then be added to the classpath.

Workaround

This vulnerability can be mitigated by enforcing authorization on the affected cluster, and avoided entirely by using SolrCloud rather than FileSystemConfigSetService.

References

CVSS Scores

version 4.0

version 3.1

Attack Vector (AV)
Network
Attack Complexity (AC)
Low
Attack Requirements (AT)
None
Privileges Required (PR)
Low
User Interaction (UI)
None

Confidentiality (VC)
High
Integrity (VI)
High
Availability (VA)
High

Confidentiality (SC)
None
Integrity (SI)
None
Availability (SA)
None

Execution with Unnecessary Privileges Affecting org.apache.solr:solr-core package, versions [,9.8.0)

Severity

Do your applications use this vulnerable package?