{"uuid": "ec138f6f-3505-4c7c-b217-a389ab7ccae3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44825", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3mo4hkw6dks26", "content": "\ud83d\udea8 HIGH: CVE-2026-44825 \u2014 CVSS 8.1/10\n\n\ud83d\udccb WHAT IT IS:\nApache Solr 9.4.0\u20139.10.1 / 10.0.0 \u2014 Hardcoded default credentials in Basic Authentication setup tool (bin/solr auth enable). Remote attacker gains full cluster admin access via publicly known default creds installed silently alongside user config.\n", "creation_timestamp": "2026-06-12T19:21:22.094974Z"}