Known Vulnerabilities for products from Apache
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Apache".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
CVE | Shortened Description | Severity | Publish Date | Last Modified |
---|---|---|---|---|
CVE-2022-36364 | Apache Calcite Avatica JDBC driver creates HTTP client instances based on class names provided via `httpclient_impl` connecti... | 8.8 - HIGH | 2022-07-28 | 2022-07-28 |
CVE-2022-36127 | A vulnerability in Apache SkyWalking NodeJS Agent prior to 0.5.1. The vulnerability will cause NodeJS services that has this ... | 7.5 - HIGH | 2022-07-18 | 2022-07-18 |
CVE-2022-36125 | It is possible to crash (panic) an application by providing a corrupted data to be read. This issue affects Rust applications... | Not Provided | 2022-08-09 | 2022-08-09 |
CVE-2022-36124 | It is possible for a Reader to consume memory beyond the allowed constraints and thus lead to out of memory on the system. Th... | Not Provided | 2022-08-09 | 2022-08-09 |
CVE-2022-35741 | Apache CloudStack version 4.5.0 and later has a SAML 2.0 authentication Service Provider plugin which is found to be vulnerab... | 9.8 - CRITICAL | 2022-07-18 | 2022-07-20 |
CVE-2022-35724 | It is possible to provide data to be read that leads the reader to loop in cycles endlessly, consuming CPU. This issue affect... | Not Provided | 2022-08-09 | 2022-08-09 |
CVE-2022-34305 | In Apache Tomcat 10.1.0-M1 to 10.1.0-M16, 10.0.0-M1 to 10.0.22, 9.0.30 to 9.0.64 and 8.5.50 to 8.5.81 the Form authentication... | 6.1 - MEDIUM | 2022-06-23 | 2022-07-29 |
CVE-2022-34169 | The Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets. T... | 9.8 - CRITICAL | 2022-07-19 | 2022-08-03 |
CVE-2022-34158 | A carefully crafted invocation on the Image plugin could trigger an CSRF vulnerability on Apache JSPWiki before 2.11.3, which... | 8.8 - HIGH | 2022-08-04 | 2022-08-04 |
CVE-2022-33980 | Apache Commons Configuration performs variable interpolation, allowing properties to be dynamically evaluated and expanded. T... | 9.8 - CRITICAL | 2022-07-06 | 2022-07-06 |
CVE-2022-25169 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.5 - MEDIUM | 2022-05-16 | 2022-08-04 |
CVE-2022-25168 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 9.8 - CRITICAL | 2022-08-04 | 2022-08-10 |
CVE-2022-25167 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 9.8 - CRITICAL | 2022-06-14 | 2022-06-27 |
CVE-2022-24969 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.1 - MEDIUM | 2022-06-09 | 2022-06-15 |
CVE-2022-24948 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.1 - MEDIUM | 2022-02-25 | 2022-03-04 |
CVE-2022-24947 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 8.8 - HIGH | 2022-02-25 | 2022-03-04 |
CVE-2022-24706 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 9.8 - CRITICAL | 2022-04-26 | 2022-07-13 |
CVE-2022-24294 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2022-07-24 | 2022-08-01 |
CVE-2022-24289 | Hessian serialization is a network protocol that supports object-based transmission. Apache Cayenne's optional Remote Object ... | 8.8 - HIGH | 2022-02-11 | 2022-02-18 |
CVE-2022-24288 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 8.8 - HIGH | 2022-02-25 | 2022-03-04 |
Known software with vulnerabilities from Apache
Type | Vendor | Product | Version |
---|---|---|---|
Application | Apache | Accumulo | 1.5.0 |
Application | Apache | Activemq | - |
Application | Apache | Activemq Apollo | 1.0 |
Application | Apache | Activemq Artemis | - |
Application | Apache | Airflow | 0.1 |
Application | Apache | Allura | 1.0.0 |
Application | Apache | Ambari | 0.9 |
Application | Apache | Amqp 0-x Jms Client | 6.0.3 |
Application | Apache | Amqp Jms Client | 0.9.0 |
Application | Apache | Ant | 1.1 |
Application | Apache | Apache Test | - |
Application | Apache | Apache-ssl | 1.37 |
Application | Apache | Apisix | 1.2 |
Application | Apache | Apr-util | 0.9.1 |
Application | Apache | Archiva | 0.9 |
Application | Apache | Arrow | 0.1.0 |
Application | Apache | Asterixdb | - |
Application | Apache | Atlas | 0.5.0 |
Application | Apache | Axis | - |
Application | Apache | Axis2 | - |
Popular searches for "Apache"
a·pache | əˈpaSH, | noun
apache H, | noun Paris New Oxford American Dictionary Dictionary

Apache Pilot Flight Simulator

App Store Apache Pilot Flight Simulator