apache

3,096 tracked vulnerabilities.

CVE-2013-1862
Apache HTTP Server 2.0.0-2.0.64 - Remote Code Execution via mod_rewrite Log Injection
Jun 10, 2013
EPSS 0.25
CVE-2013-2071
Apache Tomcat 7.0.0-7.0.39 - Exposure of Sensitive Information via AsyncListener RuntimeException
Jun 01, 2013
EPSS 0.07
CVE-2013-2067
Apache Tomcat 6.0.21-6.0.36 and 7.x < 7.0.33 - Session Fixation via Form Authentication
Jun 01, 2013
EPSS 0.07
CVE-2013-1884
Apache Subversion 1.7.0-1.7.8 - Denial of Service via Invalid Log REPORT Request
May 02, 2013
EPSS 0.51
CVE-2013-1849
Apache Subversion 1.6.x-1.6.20 and 1.7.0-1.7.8 - Denial of Service via PROPFIND Request
May 02, 2013
EPSS 0.09
CVE-2013-1847
Apache Subversion 1.6.0-1.6.20 and 1.7.0-1.7.8 - Denial of Service via Anonymous LOCK Request
May 02, 2013
EPSS 0.51
CVE-2013-1846
Subversion 1.6.x < 1.6.21 and 1.7.0-1.7.8 - Authenticated Denial of Service via LOCK on Activity URL
May 02, 2013
EPSS 0.07
CVE-2013-1845
Subversion 1.6.x < 1.6.21 and 1.7.0-1.7.8 - Authenticated Denial of Service via Property Manipulation
May 02, 2013
EPSS 0.06
CVE-2013-3060
Apache ActiveMQ <5.8.0 - Info Disclosure/DoS
Apr 21, 2013
EPSS 0.06
CVE-2013-0253
Apache Maven 3.0.4 - SSL Certificate Validation Disabled
Apr 09, 2013
EPSS 0.02
CVE-2013-0248
Apache Commons FileUpload 1.0-1.2.2 - Arbitrary File Overwrite via Symlink Attack
Mar 15, 2013
EPSS 0.01
CVE-2013-1814
Apache Rave 0.11-0.20 - Authenticated Sensitive Information Exposure via User RPC API
Mar 14, 2013
EPSS 0.73
CVE-2013-0239
Apache CXF < 2.5.9, 2.6.x < 2.6.6, 2.7.x < 2.7.3 - Unauthenticated Authentication Bypass via Missing Password Element
Mar 12, 2013
EPSS 0.05
CVE-2012-5639 MEDIUM
LibreOffice/OpenOffice - Info Disclosure
Dec 20, 2019
CVSS 6.5
EPSS 0.06
CVE-2012-1592 HIGH
Apache Struts 2.0-2.5.22 - Unrestricted Upload of File with Dangerous Type via Malformed XSLT Processing
Dec 05, 2019
CVSS 8.8
EPSS 0.29
CVE-2012-2945 HIGH
Hadoop 1.0.3 - Symlink Vulnerability
Oct 29, 2019
CVSS 7.5
EPSS 0.03
CVE-2012-3536 MEDIUM
Apache Hupa < 0.0.3 - Stored Cross-Site Scripting in Message List and View
Feb 27, 2018
CVSS 6.1
EPSS 0.02
CVE-2012-3353 HIGH
Apache Sling JCR ContentLoader < 2.1.6 - Information Disclosure via XmlReader File Import
Jan 09, 2018
CVSS 7.5
EPSS 0.03
CVE-2012-5636 MEDIUM
Apache Wicket <1.4.22, <1.5.10, <6.4.0 - XSS
Oct 30, 2017
CVSS 6.1
EPSS 0.03
CVE-2012-4449 CRITICAL
Apache Hadoop < 0.23.4, 1.x < 1.0.4, 2.x < 2.0.2 - Use of a Broken or Risky Cryptographic Algorithm
Oct 30, 2017
CVSS 9.8
EPSS 0.01
CVE-2012-0881 HIGH
Apache Xerces2 Java Parser <2.12.0 - DoS
Oct 30, 2017
CVSS 7.5
EPSS 0.17
CVE-2012-1622 CRITICAL
Apache OFBiz 10.04.x - Remote Code Execution
Oct 26, 2017
CVSS 9.8
EPSS 0.05
CVE-2012-0880 HIGH
Apache Xerces-C++ - Denial of Service via Hash Table Collision
Aug 08, 2017
CVSS 7.5
EPSS 0.04
CVE-2012-0803 CRITICAL
Apache CXF 2.4.5 and 2.5.1 - Unauthenticated Authentication Bypass via Empty UsernameToken
Aug 08, 2017
CVSS 9.8
EPSS 0.04
CVE-2012-6107
Apache Axis2/C - Man-in-the-Middle Attack via SSL Certificate Hostname Mismatch
Sep 29, 2014
EPSS 0.02