apache

3,096 tracked vulnerabilities.

CVE-2015-5213
LibreOffice <4.4.5/Apache OpenOffice <4.1.2 - Memory Corruption
Nov 10, 2015
EPSS 0.13
CVE-2015-5212
LibreOffice <4.4.5 & Apache OpenOffice <4.1.2 - Memory Corruption
Nov 10, 2015
EPSS 0.09
CVE-2015-4551
LibreOffice < 4.4.5 and Apache OpenOffice < 4.1.2 - Information Disclosure via Embedded Local File Data
Nov 10, 2015
EPSS 0.14
CVE-2015-4940
Apache Ambari < 2.0.2 - Cleartext Password Exposure in Configuration File
Nov 08, 2015
EPSS 0.01
CVE-2015-4928
Apache Ambari < 2.0.2 - Exposure of Sensitive Information via Cleartext Password Display
Nov 08, 2015
EPSS 0.03
CVE-2015-5210
Apache Ambari <2.1.2 - Open Redirect
Nov 02, 2015
EPSS 0.04
CVE-2015-3270
Apache Ambari <2.0.2, <2.1.1 - Privilege Escalation
Nov 02, 2015
EPSS 0.03
CVE-2015-3186
Apache Ambari < 2.1.0 - Authenticated Stored Cross-Site Scripting via Configuration Note Field
Nov 02, 2015
EPSS 0.02
CVE-2015-1775
Apache Ambari < 2.1.0 - Authenticated Server-Side Request Forgery via Proxy Endpoint
Nov 02, 2015
EPSS 0.03
CVE-2015-5262
Apache HttpComponents HttpClient <4.3.6 - DoS
Oct 27, 2015
EPSS 0.19
CVE-2015-6524
Apache ActiveMQ 5.x < 5.10.1 - Credential Exposure via LDAPLoginModule Wildcard Username
Aug 24, 2015
EPSS 0.08
CVE-2015-1830
Apache ActiveMQ 5.x-5.11.1 Directory Traversal Shell Upload
Aug 19, 2015
EPSS 0.84
CVE-2015-3253 CRITICAL
Apache Groovy 1.7.0-2.4.3 - Remote Code Execution via MethodClosure Deserialization
Aug 13, 2015
CVSS 9.8
EPSS 0.43
CVE-2015-3187
Apache Subversion <1.7.21, <1.8.14 - Info Disclosure
Aug 12, 2015
EPSS 0.06
CVE-2015-3184
Apache Subversion <1.7.21, <1.8.14 - Info Disclosure
Aug 12, 2015
EPSS 0.11
CVE-2015-3185
Apache HTTP Server <2.4.14 - Auth Bypass
Jul 20, 2015
EPSS 0.19
CVE-2015-3183
Apache HTTP Server 2.2.0-2.2.30 - HTTP Request Smuggling via Chunked Transfer Coding
Jul 20, 2015
EPSS 0.73
CVE-2015-0253
Apache HTTP Server 2.4.12 - Denial of Service via Missing Request Method
Jul 20, 2015
EPSS 0.15
CVE-2015-1831
Apache Struts 2.3.20 - Info Disclosure
Jul 16, 2015
EPSS 0.06
CVE-2015-0264
Apache Camel < 2.13.4 and 2.14.x < 2.14.2 - XML External Entity Injection via XPath Query
Jun 03, 2015
EPSS 0.07
CVE-2015-0263
Apache Camel < 2.13.4 and 2.14.x < 2.14.2 - XML External Entity Injection via SAXSource
Jun 03, 2015
EPSS 0.08
CVE-2015-2944
Apache Sling API <2.2.2 & Apache Sling Servlets Post <2.1.2 - XSS
Jun 02, 2015
EPSS 0.06
CVE-2015-1833
Apache Jackrabbit XML External Entity Injection via WebDAV Request
May 29, 2015
EPSS 0.51
CVE-2015-1774
Canonical Ubuntu Linux < 4.1.1 - Out-of-Bounds Write
Apr 28, 2015
EPSS 0.08
CVE-2015-0251
Apache Subversion 1.5.0-1.7.19 and 1.8.0-1.8.11 - Authenticated svn:author Property Spoofing via v1 HTTP Protocol
Apr 08, 2015
EPSS 0.08