apache
3,096 tracked vulnerabilities.
CVE-2013-1862
Apache HTTP Server 2.0.0-2.0.64 - Remote Code Execution via mod_rewrite Log Injection
Jun 10, 2013
EPSS 0.25
CVE-2013-2071
Apache Tomcat 7.0.0-7.0.39 - Exposure of Sensitive Information via AsyncListener RuntimeException
Jun 01, 2013
EPSS 0.07
CVE-2013-2067
Apache Tomcat 6.0.21-6.0.36 and 7.x < 7.0.33 - Session Fixation via Form Authentication
Jun 01, 2013
EPSS 0.07
CVE-2013-1884
Apache Subversion 1.7.0-1.7.8 - Denial of Service via Invalid Log REPORT Request
May 02, 2013
EPSS 0.51
CVE-2013-1849
Apache Subversion 1.6.x-1.6.20 and 1.7.0-1.7.8 - Denial of Service via PROPFIND Request
May 02, 2013
EPSS 0.09
CVE-2013-1847
Apache Subversion 1.6.0-1.6.20 and 1.7.0-1.7.8 - Denial of Service via Anonymous LOCK Request
May 02, 2013
EPSS 0.51
CVE-2013-1846
Subversion 1.6.x < 1.6.21 and 1.7.0-1.7.8 - Authenticated Denial of Service via LOCK on Activity URL
May 02, 2013
EPSS 0.07
CVE-2013-1845
Subversion 1.6.x < 1.6.21 and 1.7.0-1.7.8 - Authenticated Denial of Service via Property Manipulation
May 02, 2013
EPSS 0.06
CVE-2013-3060
Apache ActiveMQ <5.8.0 - Info Disclosure/DoS
Apr 21, 2013
EPSS 0.06
CVE-2013-0253
Apache Maven 3.0.4 - SSL Certificate Validation Disabled
Apr 09, 2013
EPSS 0.02
CVE-2013-0248
Apache Commons FileUpload 1.0-1.2.2 - Arbitrary File Overwrite via Symlink Attack
Mar 15, 2013
EPSS 0.01
CVE-2013-1814
Apache Rave 0.11-0.20 - Authenticated Sensitive Information Exposure via User RPC API
Mar 14, 2013
EPSS 0.73
CVE-2013-0239
Apache CXF < 2.5.9, 2.6.x < 2.6.6, 2.7.x < 2.7.3 - Unauthenticated Authentication Bypass via Missing Password Element
Mar 12, 2013
EPSS 0.05
CVE-2012-5639
MEDIUM
LibreOffice/OpenOffice - Info Disclosure
Dec 20, 2019
CVSS 6.5
EPSS 0.06
CVE-2012-1592
HIGH
Apache Struts 2.0-2.5.22 - Unrestricted Upload of File with Dangerous Type via Malformed XSLT Processing
Dec 05, 2019
CVSS 8.8
EPSS 0.29
CVE-2012-2945
HIGH
Hadoop 1.0.3 - Symlink Vulnerability
Oct 29, 2019
CVSS 7.5
EPSS 0.03
CVE-2012-3536
MEDIUM
Apache Hupa < 0.0.3 - Stored Cross-Site Scripting in Message List and View
Feb 27, 2018
CVSS 6.1
EPSS 0.02
CVE-2012-3353
HIGH
Apache Sling JCR ContentLoader < 2.1.6 - Information Disclosure via XmlReader File Import
Jan 09, 2018
CVSS 7.5
EPSS 0.03
CVE-2012-5636
MEDIUM
Apache Wicket <1.4.22, <1.5.10, <6.4.0 - XSS
Oct 30, 2017
CVSS 6.1
EPSS 0.03
CVE-2012-4449
CRITICAL
Apache Hadoop < 0.23.4, 1.x < 1.0.4, 2.x < 2.0.2 - Use of a Broken or Risky Cryptographic Algorithm
Oct 30, 2017
CVSS 9.8
EPSS 0.01
CVE-2012-0881
HIGH
Apache Xerces2 Java Parser <2.12.0 - DoS
Oct 30, 2017
CVSS 7.5
EPSS 0.17
CVE-2012-1622
CRITICAL
Apache OFBiz 10.04.x - Remote Code Execution
Oct 26, 2017
CVSS 9.8
EPSS 0.05
CVE-2012-0880
HIGH
Apache Xerces-C++ - Denial of Service via Hash Table Collision
Aug 08, 2017
CVSS 7.5
EPSS 0.04
CVE-2012-0803
CRITICAL
Apache CXF 2.4.5 and 2.5.1 - Unauthenticated Authentication Bypass via Empty UsernameToken
Aug 08, 2017
CVSS 9.8
EPSS 0.04
CVE-2012-6107
Apache Axis2/C - Man-in-the-Middle Attack via SSL Certificate Hostname Mismatch
Sep 29, 2014
EPSS 0.02
Products
http_server 330
tomcat 263
airflow 143
struts 90
traffic_server 82
ofbiz 76
camel 75
activemq 72
superset 68
openoffice 60
cxf 57
nifi 50
solr 47
subversion 47
cloudstack 45
hadoop 37
dolphinscheduler 32
inlong 32
openmeetings 29
ambari 26
apisix 25
tika 25
jspwiki 24
kylin 24
shiro 24
fineract 23
geode 23
spark 22
wicket 22
zeppelin 22
Quick Filters