Hi there, Thank you for your prompt response. Our scans have detected these CVEs in 9.1 and higher (At least the one we have tested). I’d highly appreciate if you could link me to the appropriate changelog for these changes.
Thanks. On 2024/02/13 16:55:24 Jan Høydahl wrote: > Hi Shahryar, > > You do not specify what versions of Solr you believe to be vulnerable to > those two CVEs. > > A quick check finds that they are both already plugged both in all actively > supported versions of Solr (i.e. 9.x and 8.11.x). > In the future you can check this yourself by looking at Solr's changelog. > > Jan
