Apache

2,736 tracked vulnerabilities.

CVE-2024-56512 MEDIUMNUCLEI
Apache NiFi <2.0.0 - Auth Bypass
Dec 28, 2024
CVSS 5.4
EPSS 0.29
CVE-2024-52046 CRITICAL
Apache MINA <2.3 - RCE
Dec 25, 2024
CVSS 9.8
EPSS 0.82
CVE-2024-43441 CRITICALNUCLEI
Apache Hugegraph < 1.5.0 - Authentication Bypass
Dec 24, 2024
CVSS 9.8
EPSS 0.90
CVE-2024-45387 CRITICAL
Apache Traffic Control <=8.0.1, >=8.0.0 - SQL Injection
Dec 23, 2024
CVSS 9.9
EPSS 0.41
CVE-2024-23945 MEDIUM
Apache Hive < 4.0.0 - Error Information Exposure
Dec 23, 2024
CVSS 5.9
EPSS 0.06
CVE-2024-56337 CRITICAL
Apache Tomcat < 9.0.98 - TOCTOU Race Condition
Dec 20, 2024
CVSS 9.8
EPSS 0.10
CVE-2024-56128 MEDIUM
Apache Kafka - Auth Bypass
Dec 18, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-54677 MEDIUM
Apache Tomcat < 9.0.98 - Denial of Service
Dec 17, 2024
CVSS 5.3
EPSS 0.01
CVE-2024-50379 CRITICAL
Apache Tomcat < 9.0.98 - TOCTOU Race Condition
Dec 17, 2024
CVSS 9.8
EPSS 0.87
CVE-2024-55633 MEDIUM
Apache Superset < 4.1.0 - Incorrect Authorization
Dec 12, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-53677 CRITICAL
Apache Struts < 6.4.0 - Unrestricted File Upload
Dec 11, 2024
CVSS 9.8
EPSS 0.93
CVE-2024-53949 MEDIUM
Apache Superset <4.1.0 - Auth Bypass
Dec 09, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-53948 MEDIUM
Apache Superset <4.1.0 - Info Disclosure
Dec 09, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-53947 CRITICAL
Apache Superset <4.1.0 - SQL Injection
Dec 09, 2024
CVSS 9.8
EPSS 0.00
CVE-2024-46901 LOW
Apache Subversion <1.14.4 - Info Disclosure
Dec 09, 2024
CVSS 3.1
EPSS 0.06
CVE-2022-41137 HIGH
Apache Hive - RCE
Dec 05, 2024
CVSS 8.3
EPSS 0.06
CVE-2024-45106 HIGH
Apache Ozone <1.4 - Auth Bypass
Dec 03, 2024
CVSS 8.1
EPSS 0.00
CVE-2024-52338 CRITICAL
Apache Arrow R <16.1.0 - Code Injection
Nov 28, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-51569 HIGH
Apache NimBLE <1.8.0 - Info Disclosure
Nov 26, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-47250 MEDIUM
Apache NimBLE <1.8.0 - Info Disclosure
Nov 26, 2024
CVSS 5.0
EPSS 0.00
CVE-2024-47249 MEDIUM
Apache NimBLE <1.8.0 - Memory Corruption
Nov 26, 2024
CVSS 5.0
EPSS 0.00
CVE-2024-47248 MEDIUM
Apache NimBLE <1.7.0 - Buffer Overflow
Nov 26, 2024
CVSS 6.3
EPSS 0.00
CVE-2024-45719 LOW
Apache Answer < 1.4.1 - Weak Encryption
Nov 22, 2024
CVSS 2.6
EPSS 0.00
CVE-2024-52067 MEDIUM
Apache NiFi <2.0.0-M4 - Info Disclosure
Nov 21, 2024
CVSS 4.9
EPSS 0.00
CVE-2018-9481 MEDIUM
Google Android < 6.2.3 - Integer Overflow
Nov 20, 2024
CVSS 6.5
EPSS 0.00
Products
http_server 306 tomcat 237 airflow 101 struts 90 traffic_server 80 superset 68 openoffice 60 ofbiz 57 activemq 51 subversion 47 solr 46 nifi 44 cxf 43 cloudstack 38 hadoop 37 inlong 32 camel 31 ambari 26 tika 25 openmeetings 25 jspwiki 24 dolphinscheduler 24 geode 23 zeppelin 22 ranger 21 spark 21 kylin 21 couchdb 20 fineract 20 hive 20
Quick Filters
Critical CVEs With Exploits In CISA KEV