Known Vulnerabilities for Helix by Apache
Listed below are 3 of the newest known vulnerabilities associated with "Helix" by "Apache".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-57111 json | Permissive Cross-Origin Resource Sharing (CORS) in the REST API (helix-rest, org.apache.helix.rest.server.filters.CORSFilter)... | Not Provided | 2026-07-09 | 2026-07-09 |
| CVE-2026-6902 json | A Remote Code Execution vulnerability in P4 (Helix Core) Server's Command-Line Client, prior to the 2025.2 Patch 2, has been ... | Not Provided | 2026-05-18 | 2026-05-20 |
| CVE-2023-38647 json | An attacker can use SnakeYAML to deserialize java.net.URLClassLoader and make it load a JAR from a specified URL, and then de... | 9.8 - CRITICAL | 2023-07-26 | 2023-08-03 |
| CVE-2022-47500 json | URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Apache Software Foundation Apache Helix UI component.Thi... | 6.1 - MEDIUM | 2022-12-19 | 2023-11-07 |