Known Vulnerabilities for Portable Runtime by Apache
Listed below are 8 of the newest known vulnerabilities associated with "Portable Runtime" by "Apache".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-41491 json | Dapr is a portable, event-driven, runtime for building distributed applications across cloud and edge. From versions 1.3.0 to... | Not Provided | 2026-05-08 | 2026-05-08 |
| CVE-2026-34426 json | OpenClaw versions prior to commit b57b680 contain an approval bypass vulnerability due to inconsistent environment variable ... | Not Provided | 2026-04-02 | 2026-04-03 |
| CVE-2022-28331 json | On Windows, Apache Portable Runtime 1.7.0 and earlier may write beyond the end of a stack based buffer in apr_socket_sendv().... | 9.8 - CRITICAL | 2023-01-31 | 2023-07-07 |
| CVE-2022-24963 json | Integer Overflow or Wraparound vulnerability in apr_encode functions of Apache Portable Runtime (APR) allows an attacker to w... | 9.8 - CRITICAL | 2023-01-31 | 2023-09-08 |
| CVE-2021-35940 json | An out-of-bounds array read in the apr_time_exp*() functions was fixed in the Apache Portable Runtime 1.6.3 release (CVE-2017... | 7.1 - HIGH | 2021-08-23 | 2023-11-07 |
| CVE-2017-12613 json | When apr_time_exp*() or apr_os_exp_time*() functions are invoked with an invalid month field value in Apache Portable Runtime... | 7.1 - HIGH | 2017-10-24 | 2023-11-07 |
| CVE-2012-0840 json | Not Provided | 2012-02-10 | 2026-04-29 | |
| CVE-2011-0419 json | Not Provided | 2011-05-16 | 2026-04-29 | |
| CVE-2009-2699 json | Not Provided | 2009-10-13 | 2026-04-23 | |
| CVE-2009-2412 json | Not Provided | 2009-08-06 | 2026-04-23 |