apache

3,092 tracked vulnerabilities.

CVE-2023-34981 HIGH
Apache Tomcat 8.5.88-8.5.89, 9.0.74, 10.1.8, 11.0.0-M5 - Information Leak via AJP Response Header Regression
Jun 21, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-34340 CRITICAL
Apache Accumulo 2.1.0 - Improper Authentication
Jun 21, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-35005 MEDIUM
Apache Airflow 2.5.0-2.6.1 - Exposure of Sensitive Information via Configuration UI
Jun 19, 2023
CVSS 6.5
EPSS 0.02
CVE-2023-34396 MEDIUM
Apache Struts <= 2.5.30 and <= 6.1.2 - Denial of Service via Resource Allocation
Jun 14, 2023
CVSS 4.3
EPSS 0.05
CVE-2023-34149 MEDIUM
Apache Struts <= 2.5.30 and <= 6.1.2 - Denial of Service via Resource Allocation
Jun 14, 2023
CVSS 4.3
EPSS 0.05
CVE-2023-33933 HIGH
Apache Traffic Server <9.2.0 - Info Disclosure
Jun 14, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-30631 HIGH
Apache Traffic Server 8.0.0-9.2.0 - Improper Input Validation in PUSH Method Handling
Jun 14, 2023
CVSS 7.5
EPSS 0.02
CVE-2023-34468 HIGH
Apache NiFi 0.0.2-1.21.0 - Authenticated Remote Code Execution via H2 JDBC Database URL
Jun 12, 2023
CVSS 8.8
EPSS 0.64
CVE-2023-34212 MEDIUM
Apache NiFi 1.8.0-1.21.0 - Authenticated Deserialization of Untrusted Data via JNDI URL Configuration
Jun 12, 2023
CVSS 6.5
EPSS 0.02
CVE-2023-30576 MEDIUM
Apache Guacamole 0.9.10-1.5.1 - Remote Code Execution via RDP Audio Input Buffer Use-After-Free
Jun 07, 2023
CVSS 6.8
EPSS 0.01
CVE-2023-30575 MEDIUM
Apache Guacamole <1.5.1 - Code Injection
Jun 07, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-33234 HIGH
Apache Airflow CNCF Kubernetes Provider <5.0.0 - RCE
May 30, 2023
CVSS 7.2
EPSS 0.02
CVE-2023-30601 HIGH
Apache Cassandra 4.0.0-4.0.9 and 4.1.0-4.1.1 - Privilege Escalation via FQL/Audit Log Configuration
May 30, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-33246 CRITICAL KEVNUCLEI
Apache RocketMQ update config RCE
May 24, 2023
CVSS 9.8
EPSS 0.97
CVE-2023-31103 HIGH
Apache InLong <1.6.0 - Privilege Escalation
May 22, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-31101 MEDIUM
Apache InLong <1.7.0 - Info Disclosure
May 22, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-31098 CRITICAL
Apache InLong <1.7.0 - Info Disclosure
May 22, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-31066 CRITICAL
Apache InLong <1.6.0 - Info Disclosure
May 22, 2023
CVSS 9.1
EPSS 0.01
CVE-2023-31065 CRITICAL
Apache InLong <1.7.0 - Info Disclosure
May 22, 2023
CVSS 9.1
EPSS 0.01
CVE-2023-31064 HIGH
Apache InLong <1.7.0 - Info Disclosure
May 22, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-31062 CRITICAL
Apache InLong <1.7.0 - Privilege Escalation
May 22, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-31454 HIGH
Apache InLong <1.7.0 - Privilege Escalation
May 22, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-31453 HIGH
Apache InLong <1.7.0 - Privilege Escalation
May 22, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-31206 HIGH
Apache InLong <1.7.0 - Privilege Escalation
May 22, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-31058 HIGH
Apache InLong <1.6.0 - Deserialization
May 22, 2023
CVSS 7.5
EPSS 0.01