CVE-2026-44825

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2026-44825

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-44825.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2026-44825

Aliases

BIT-solr-2026-44825

Downstream

UBUNTU-CVE-2026-44825

Published

2026-06-01T08:02:15.120Z

Modified

2026-06-05T07:56:36.978086250Z

Severity

8.1 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

Apache Solr: Enabling BasicAuth using bin/solr CLI configures additional insecure users

Details

Hardcoded credentials in the Basic Authentication setup tool (bin/solr auth enable) in Apache Solr versions 9.4.0 through 9.10.1 and 10.0.0 allows a remote attacker to gain full administrative access to the cluster via publicly known default credentials installed silently alongside the user-specified account.

As an immediate workaround without upgrading, delete the template users (superadmin, admin, search, index) from security.json or change their passwords. The future, not yet released, versions 9.11.0 and 10.1.0 will not be vulnerable, and it will be enough to upgrade to solve the issue.

Not affected: * Clusters where bin/solr auth enable was not used to bootstrap BasicAuth * Clusters where template users have been assigned strong passwords after bootstrap

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/44xxx/CVE-2026-44825.json",
    "cwe_ids": [
        "CWE-1188",
        "CWE-798"
    ],
    "unresolved_ranges": [
        {
            "extracted_events": [
                {
                    "introduced": "9.4.0"
                },
                {
                    "last_affected": "9.10.1"
                },
                {
                    "last_affected": "10.0.0"
                }
            ],
            "source": "AFFECTED_FIELD"
        },
        {
            "extracted_events": [
                {
                    "introduced": "9.4.0"
                },
                {
                    "fixed": "9.10.1"
                }
            ],
            "source": "DESCRIPTION"
        }
    ],
    "cna_assigner": "apache"
}

References

Affected packages

Git / github.com/apache/solr

Affected ranges

Type

GIT

Repo

https://github.com/apache/solr

Events

Introduced

71e101bb37497f730078d9afe1991b60d10bfe96

Last affected

c135e6335c7158fa26e96b0dc386f825255b47c0

Introduced

Last affected

6c6c48a6f78486130682ea9c1f7a2723af5a87be

Database specific

{
    "extracted_events": [
        {
            "introduced": "9.4.0"
        },
        {
            "last_affected": "9.10.1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "10.0.0"
        }
    ],
    "cpe": [
        "cpe:2.3:a:apache:solr:*:*:*:*:*:*:*:*",
        "cpe:2.3:a:apache:solr:10.0.0:*:*:*:*:*:*:*"
    ],
    "source": [
        "CPE_RANGE",
        "CPE_STRING"
    ]
}

Affected versions

Other

grafts/lucene-oldest

grafts/lucene-solr-copy

grafts/lucene-solr-oldest-merged

history/branches/lucene-solr/branch_7

history/branches/lucene-solr/lucene-6997

history/branches/lucene-solr/lucene/main

history/branches/lucene-solr/origin/branch_8_x

history/branches/lucene-solr/pointvalues

history/branches/lucene-solr/solr/main

releases/solr/10.*

releases/solr/10.0.0

releases/solr/9.*

releases/solr/9.10.0

releases/solr/9.10.1

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-44825.json"