apache
2,910 tracked vulnerabilities.
CVE-2014-9593
Apache CloudStack <4.3.2, <4.4.2 - Info Disclosure
Jan 15, 2015
EPSS 0.03
CVE-2014-10022
Apache Traffic Server < 5.1.1 - Denial of Service via Internal Buffer Sizing
Jan 13, 2015
EPSS 0.03
CVE-2014-9527
Apache POI <3.11 - DoS
Jan 06, 2015
EPSS 0.01
CVE-2014-3628
Apache Solr 4.0.0-4.10.2 - Cross-Site Scripting via Admin UI Stats Page
Jan 06, 2015
EPSS 0.01
CVE-2014-8109
Apache HTTP Server 2.3.x and 2.4.x <= 2.4.10 - Incorrect Authorization via mod_lua Module
Dec 29, 2014
EPSS 0.12
CVE-2014-8108
Redhat Enterprise Linux Desktop - Denial of Service
Dec 18, 2014
EPSS 0.05
CVE-2014-3580
Redhat Enterprise Linux Desktop - Denial of Service
Dec 18, 2014
EPSS 0.14
CVE-2014-3583
Apple Mac OS X - Memory Corruption
Dec 15, 2014
EPSS 0.42
CVE-2014-7809
Apache Struts 2.0.0-2.3.x - Cross-Site Request Forgery via Predictable Token Values
Dec 10, 2014
EPSS 0.08
CVE-2014-7807
Apache CloudStack 4.3.x < 4.3.2 and 4.4.x < 4.4.2 - Unauthenticated Authentication Bypass via Login Request
Dec 10, 2014
EPSS 0.00
CVE-2014-3627
Apache Hadoop 0.23.0-0.23.11 and 2.x < 2.5.2 - Symlink Attack via Public Tar Archive Localization
Dec 05, 2014
EPSS 0.02
CVE-2014-3629
Apache Qpid 0.30 - XML External Entity Injection via XML Exchange Module
Nov 17, 2014
EPSS 0.02
CVE-2014-0228
Apache Hive <0.13.1 - Info Disclosure
Nov 16, 2014
EPSS 0.00
CVE-2014-3502
Apache Cordova Android - Exposure of Sensitive Information via Crafted URI Scheme
Nov 15, 2014
EPSS 0.01
CVE-2014-3501
Apache Cordova Android - Remote Server Connection via WebSocket WebView Bypass
Nov 15, 2014
EPSS 0.02
CVE-2014-3500
Apache Cordova Android <3.5.1 - XSS
Nov 15, 2014
EPSS 0.01
CVE-2014-3623
Apache WSS4J < 1.6.17 and 2.x < 2.0.2 - Improper Authentication via SAML SubjectConfirmation Method
Oct 30, 2014
EPSS 0.02
CVE-2014-3584
Apache CXF < 2.6.11, 2.7.x < 2.7.8, 3.0.x < 3.0.1 - Denial of Service via Crafted SAML Token
Oct 30, 2014
EPSS 0.06
CVE-2014-3581
Apache HTTP Server - Denial of Service via Empty Content-Type Header
Oct 10, 2014
EPSS 0.05
CVE-2014-0074
Apache Shiro 1.x < 1.2.3 - Authentication Bypass via Empty LDAP Credentials
Oct 06, 2014
EPSS 0.00
CVE-2014-3574
Apache POI < 3.10.1 and 3.11.x < 3.11-beta2 - Denial of Service via XML Entity Expansion
Sep 04, 2014
EPSS 0.13
CVE-2014-3529
Apache POI < 3.10.1 - XML External Entity Injection via OpenXML File Processing
Sep 04, 2014
EPSS 0.05
CVE-2014-3596
Apache Axis <1.4 - Man-in-the-Middle
Aug 27, 2014
EPSS 0.01
CVE-2014-3575
Redhat Enterprise Linux Desktop < 4.1.1 - Information Disclosure
Aug 27, 2014
EPSS 0.10
CVE-2014-3524
Apache OpenOffice < 4.1.1 - Remote Code Execution via Crafted Calc Spreadsheet
Aug 26, 2014
EPSS 0.11
Products
http_server 317
tomcat 254
airflow 120
struts 90
traffic_server 82
ofbiz 74
superset 68
openoffice 60
activemq 57
subversion 47
cxf 46
nifi 46
solr 46
cloudstack 45
camel 40
hadoop 37
inlong 32
openmeetings 28
dolphinscheduler 27
ambari 26
tika 25
jspwiki 24
geode 23
shiro 23
spark 22
wicket 22
zeppelin 22
kylin 21
ranger 21
archiva 20
Quick Filters