Apache
2,736 tracked vulnerabilities.
CVE-2025-48988
HIGH
Apache Tomcat <11.0.7 - Allocation of Resources Without Limits or T...
Jun 16, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-48976
HIGH
Apache Commons FileUpload <1.6-2.0.0-M4 - DoS
Jun 16, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-47869
CRITICAL
Apache Nuttx < 12.9.0 - Memory Corruption
Jun 16, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-47868
CRITICAL
Apache Nuttx < 12.9.0 - Out-of-Bounds Write
Jun 16, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-30675
MEDIUM
Apache Cloudstack < 4.19.3.0 - Information Disclosure
Jun 11, 2025
CVSS 4.7
EPSS 0.00
CVE-2025-47849
HIGH
Apache Cloudstack < 4.19.3.0 - Improper Privilege Management
Jun 10, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-47713
HIGH
Apache Cloudstack < 4.19.3.0 - Improper Privilege Management
Jun 10, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-26521
HIGH
Apache Cloudstack < 4.19.3.0 - Information Disclosure
Jun 10, 2025
CVSS 8.1
EPSS 0.00
CVE-2025-22829
MEDIUM
Apache Cloudstack - Improper Privilege Management
Jun 10, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-27819
HIGH
Apache Kafka < 3.3.2 - Insecure Deserialization
Jun 10, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-27818
HIGH
Apache Kafka < 3.9.1 - Insecure Deserialization
Jun 10, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-27817
HIGHNUCLEI
Apache Kafka Client - Arbitrary File Read
Jun 10, 2025
CVSS 7.5
EPSS 0.17
CVE-2025-27531
CRITICAL
Apache InLong <2.1.0 - Deserialization
Jun 06, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-46548
MEDIUM
Pekko Management <1.1.1 - Auth Bypass
Jun 03, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-48912
MEDIUM
Apache Superset <4.1.2 - Privilege Escalation
May 30, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-46701
HIGH
Apache Tomcat <11.0.6 - Security Constraint Bypass
May 29, 2025
CVSS 7.3
EPSS 0.00
CVE-2025-48734
HIGH
Apache Commons <2.0.0 - Info Disclosure
May 28, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-27528
CRITICAL
Apache InLong <2.2.0 - Deserialization
May 28, 2025
CVSS 9.1
EPSS 0.00
CVE-2025-27526
MEDIUM
Apache InLong <2.2.0 - Deserialization
May 28, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-27522
MEDIUM
Apache InLong <2.2.0 - Deserialization
May 28, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-35003
CRITICAL
Apache Nuttx < 12.9.0 - Memory Corruption
May 26, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-47436
CRITICAL
Apache Orc < 1.8.9 - Heap Buffer Overflow
May 14, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-26864
HIGH
Apache Iotdb < 1.3.4 - Information Disclosure
May 14, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-26795
HIGH
Apache Iotdb < 1.3.4 - Information Disclosure
May 14, 2025
CVSS 7.5
EPSS 0.00
CVE-2024-24780
CRITICAL
Apache IoTDB <1.3.4 - RCE
May 14, 2025
CVSS 9.8
EPSS 0.02
Products
http_server 306
tomcat 237
airflow 101
struts 90
traffic_server 80
superset 68
openoffice 60
ofbiz 57
activemq 51
subversion 47
solr 46
nifi 44
cxf 43
cloudstack 38
hadoop 37
inlong 32
camel 31
ambari 26
tika 25
openmeetings 25
jspwiki 24
dolphinscheduler 24
geode 23
zeppelin 22
ranger 21
spark 21
kylin 21
couchdb 20
fineract 20
hive 20
Quick Filters