Known Vulnerabilities for Apr-util by Apache
Listed below are 6 of the newest known vulnerabilities associated with "Apr-util" by "Apache".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-26831 | textract through 2.5.0 is vulnerable to OS Command Injection via the file path parameter in multiple extractors. When process... | Not Provided | 2026-03-25 | 2026-03-28 |
| CVE-2025-67030 | Directory Traversal vulnerability in the extractFile method of org.codehaus.plexus.util.Expand in plexus-utils before 6d780b3... | Not Provided | 2026-03-25 | 2026-03-27 |
| CVE-2011-1928 | The fnmatch implementation in apr_fnmatch.c in the Apache Portable Runtime (APR) library 1.4.3 and 1.4.4, and the Apache HTTP... | 4.3 - MEDIUM | 2011-05-24 | 2023-11-07 |
| CVE-2010-1623 | Memory leak in the apr_brigade_split_line function in buckets/apr_brigade.c in the Apache Portable Runtime Utility library (a... | 5 - MEDIUM | 2010-10-04 | 2023-10-03 |
| CVE-2009-2412 | Multiple integer overflows in the Apache Portable Runtime (APR) library and the Apache Portable Utility library (aka APR-util... | 10 - HIGH | 2009-08-06 | 2023-11-07 |
| CVE-2009-1956 | Off-by-one error in the apr_brigade_vprintf function in Apache APR-util before 1.3.5 on big-endian platforms allows remote at... | 6.4 - MEDIUM | 2009-06-08 | 2023-11-07 |
| CVE-2009-1955 | The expat XML parser in the apr_xml_* interface in xml/apr_xml.c in Apache APR-util before 1.3.7, as used in the mod_dav and ... | 7.5 - HIGH | 2009-06-08 | 2024-02-02 |
| CVE-2009-0023 | The apr_strmatch_precompile function in strmatch/apr_strmatch.c in Apache APR-util before 1.3.5 allows remote attackers to ca... | 4.3 - MEDIUM | 2009-06-08 | 2024-02-02 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Apache | Apr-util | 1.4.4 | All | All | All |
| Application | Apache | Apr-util | 1.4.3 | All | All | All |
| Application | Apache | Apr-util | 1.3.9 | All | All | All |
| Application | Apache | Apr-util | 1.3.8 | All | All | All |
| Application | Apache | Apr-util | 1.3.7 | All | All | All |
| Application | Apache | Apr-util | 1.3.6 | All | All | All |
| Application | Apache | Apr-util | 1.3.5 | All | All | All |
| Application | Apache | Apr-util | 1.3.4 | All | All | All |
| Application | Apache | Apr-util | 1.3.3 | All | All | All |
| Application | Apache | Apr-util | 1.3.2 | All | All | All |
| Application | Apache | Apr-util | 1.3.10 | All | All | All |
| Application | Apache | Apr-util | 1.3.1 | All | All | All |
| Application | Apache | Apr-util | 1.3.0 | All | All | All |
| Application | Apache | Apr-util | 1.2.9 | All | All | All |
| Application | Apache | Apr-util | 1.2.8 | All | All | All |
| Application | Apache | Apr-util | 1.2.7 | All | All | All |
| Application | Apache | Apr-util | 1.2.6 | All | All | All |
| Application | Apache | Apr-util | 1.2.2 | All | All | All |
| Application | Apache | Apr-util | 1.2.13 | All | All | All |
| Application | Apache | Apr-util | 1.2.12 | All | All | All |