Quickfire Cyber Bulletin June 5, 2026
← Back

CVE-2019-17558

Apache Solr VelocityResponseWriter Plug-In Remote Code Execution Vulnerability

High

Description

The Apache Solr VelocityResponseWriter plug-in contains an unspecified vulnerability which can allow for remote code execution.

Scores & Signals

EPSS score 0.9447 (100.0th percentile)
CISA KEV Yes — actively exploited (added 2021-11-03) · due 2022-05-03
Affected Apache Solr

Sources

External references

Risk scores are deterministic, based on public signals only. They are informational context, not a final verdict. Always consult vendor advisories before taking action.