Apache EPSS Rated Vulnerabilities
Apache vulnerabilities from the past 365 days which have an EPSS rating.
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Incorrect Authorization Vulnerability Affects Apache OFBiz Through 18.12.14
CVE-2024-38856ApacheApache Ofbizπ₯ππ°πΎπ‘EPSS 94%π¦ π°9.8CRITICALApache OFBiz vulnerable to 'Forced Browsing' (Direct Request) attack
CVE-2024-45195ApacheApache OfbizπΎEPSS 94%π¦ π°7.5HIGHImproper Authentication Vulnerability in Apache Solr
CVE-2024-45216ApacheApache SolrEPSS 93%Remote Code Execution and Information Disclosure Vulnerability in Apache Tomcat Software
CVE-2025-24813ApacheApache Tomcatπ₯ππΎπ‘EPSS 93%π¦ π°9.8CRITICALFlawed File Upload Logic in Apache Struts Exposes Vulnerability
CVE-2024-53677ApacheApache Strutsπ₯ππ°πΎπ‘EPSS 91%π°9.8CRITICALRace Condition Vulnerability in Apache Tomcat Leading to Remote Code Execution
CVE-2024-50379ApacheApache Tomcatπ₯ππΎπ‘EPSS 88%π°9.8CRITICALServer-Side Request Forgery (SSRF) and Improper Control of Generation of Code (Code Injection) Vulnerability in Apache OFBiz
CVE-2024-45507ApacheApache OfbizπEPSS 88%9.8CRITICALIllegal Access to Additional Resource Files via File Read/Write Vulnerability
CVE-2024-30188ApacheApache DolphinschedulerEPSS 80%8.1HIGHSnakeYaml Deserialization RCE Vulnerability in Apache HertzBeat (incubating)
CVE-2024-42323ApacheApache HertzbeatEPSS 58%Deserialization Vulnerability in Apache Seata by Apache
CVE-2024-22399ApacheSeataEPSS 48%9.8CRITICALSQL Injection Vulnerability in Apache Traffic Control
CVE-2024-45387ApacheApache Traffic Controlππ°πΎEPSS 37%π°8.8HIGHBypass/Injection Vulnerability in Apache Camel by Apache
CVE-2025-27636ApacheApache CamelπΎEPSS 35%π°5.6MEDIUMRemote Code Execution Risk in Apache MINA ObjectSerializationDecoder
CVE-2024-52046ApacheApache Minaπ₯πEPSS 32%10CRITICALAuthentication Bypass Vulnerability in Apache HugeGraph-Server
CVE-2024-43441ApacheApache Hugegraph-serverπΎEPSS 26%π°Authorization Flaw in Apache NiFi Affecting Parameter Contexts and Controller Services
CVE-2024-56512Apache Software F...NifiπΎπ‘EPSS 23%5.4MEDIUMRace Condition Vulnerability in Apache Tomcat Affects Multiple Versions
CVE-2024-56337ApacheApache Tomcatπ₯ππΎEPSS 13%π°9.8CRITICALAccess Control Issue in Apache CloudStack Affects User Comments
CVE-2025-22828ApacheApache CloudstackπΎπ‘EPSS 11%Invalid Filename Validation Vulnerability in Apache Subversion Repositories
CVE-2024-46901ApacheApache SubversionEPSS 10%4.3MEDIUMApplication Security Flaw in Apache Hive and Spark Affecting Cookie Signature Verification
CVE-2024-23945ApacheApache Hive5.9MEDIUMIncorrect Object Recycling Vulnerability Affects Apache Tomcat Versions
CVE-2024-52317ApacheApache TomcatπΎπ‘6.5MEDIUMUnsecure Method in Apache Hive Metastore Leads to Remote Code Execution Vulnerability
CVE-2022-41137ApacheApache HiveUncontrolled Resource Consumption in Apache Tomcat Affects Performance
CVE-2024-54677ApacheApache Tomcat5.3MEDIUMDolphinScheduler Remote Code Execution Vulnerability
CVE-2024-43202ApacheApache Dolphinscheduler9.8CRITICALArrow R Package Vulnerability: Deserialization of Untrusted Data Leads to Arbitrary Code Execution
CVE-2024-52338ApacheApache Arrow R PackageDeserialization Vulnerability in Apache OpenMeetings by The Apache Software Foundation
CVE-2024-54676ApacheApache Openmeetings9.8CRITICAL