Apache Exploited Vulnerabilities
Apache vulnerabilities known to be exploited. Over the past 365 days, sorted by exploit discovery date.
Vulnerability Published:
๐๏ธ Published
- Anytime
Sort By:
๐๏ธ Published Date
- Descending
Code Execution Vulnerability in Apache Parquet's parquet-avro Module
CVE-2025-46762ApacheApache Parquet Java๐พ๐ฐ7.1HIGHSession Management Vulnerability in Apache Roller by Apache
CVE-2025-24859ApacheApache Roller๐๐พ๐ฐ10CRITICALTemplate Engine Vulnerability in Apache OFBiz Affects Multiple Versions
CVE-2025-26865ApacheApache Ofbiz๐พ๐ก3.5LOWCode Execution Vulnerability in Apache Parquet Product by Apache
CVE-2025-30065ApacheApache Parquet Java๐ฅ๐๐ฐ๐พ๐ก๐ฐ10CRITICALRemote Code Execution and Information Disclosure Vulnerability in Apache Tomcat Software
CVE-2025-24813ApacheApache Tomcat๐ฅ๐๐พ๐กEPSS 93%๐ฆ ๐ฐ9.8CRITICALBypass/Injection Vulnerability in Apache Camel by Apache
CVE-2025-27636ApacheApache Camel๐พEPSS 41%๐ฐ5.6MEDIUMImproper Input Validation in Apache Traffic Server by Apache
CVE-2024-38311ApacheApache Traffic Server๐พ๐ฐ6.3MEDIUMAccess Control Issue in Apache CloudStack Affects User Comments
CVE-2025-22828ApacheApache Cloudstack๐พ๐กRace Condition Vulnerability in Apache Tomcat Affects Multiple Versions
CVE-2024-56337ApacheApache Tomcat๐ฅ๐๐พ๐ฐ9.8CRITICALAuthorization Flaw in Apache NiFi Affecting Parameter Contexts and Controller Services
CVE-2024-56512Apache Software F...Nifi๐พ๐กEPSS 24%5.4MEDIUMAuthentication Bypass Vulnerability in Apache HugeGraph-Server
CVE-2024-43441ApacheApache Hugegraph-server๐พEPSS 37%๐ฐSQL Injection Vulnerability in Apache Traffic Control
CVE-2024-45387ApacheApache Traffic Control๐๐ฐ๐พEPSS 21%๐ฐ8.8HIGHRace Condition Vulnerability in Apache Tomcat Leading to Remote Code Execution
CVE-2024-50379ApacheApache Tomcat๐ฅ๐๐พ๐กEPSS 91%๐ฐ9.8CRITICALPartial Fix for Content-Type Based Configuration Ignores Use of Legacy Handlers, Leading to Source Code Disclosure
CVE-2024-40725ApacheApache Http Server๐ฅ๐๐พ๐กEPSS 23%๐ฐ5.3MEDIUMArbitrary File Write Vulnerability in ActiveMQ Artemis Could Lead to RCE
CVE-2023-50780ApacheApache ActiveMQ Artemis๐พ๐ก8.8HIGHCode Execution or Source Code Disclosure Vulnerability in Apache HTTP Server's mod_rewrite
CVE-2024-38475ApacheApache Http Server๐๐พ๐กEPSS 92%๐ฆ ๐ฐ9.1CRITICALFlawed File Upload Logic in Apache Struts Exposes Vulnerability
CVE-2024-53677ApacheApache Struts๐ฅ๐๐ฐ๐พ๐กEPSS 92%๐ฐIncorrect Object Recycling and Reuse Vulnerability in Apache Tomcat
CVE-2024-52318ApacheApache Tomcat๐พ๐ก6.1MEDIUMIncorrect Object Recycling Vulnerability Affects Apache Tomcat Versions
CVE-2024-52317ApacheApache Tomcat๐พ๐ก6.5MEDIUMUnchecked Error Condition Vulnerability Affects Apache Tomcat
CVE-2024-52316ApacheApache Tomcat๐พ๐ก9.8CRITICALApache Avro Java SDK Vulnerability
CVE-2024-47561ApacheApache Avro Java Sdk๐พ๐ฐApache OFBiz vulnerable to 'Forced Browsing' (Direct Request) attack
CVE-2024-45195ApacheApache Ofbiz๐พEPSS 94%๐ฆ ๐ฐ7.5HIGHApache OFBiz vulnerable to Path Traversal attack
CVE-2024-36104ApacheApache Ofbiz๐พEPSS 93%๐ฐ9.1CRITICALIncorrect Authorization Vulnerability Affects Apache OFBiz Through 18.12.14
CVE-2024-38856ApacheApache Ofbiz๐ฅ๐๐ฐ๐พ๐กEPSS 94%๐ฆ ๐ฐ9.8CRITICALImproper Input Validation Vulnerability in Apache Superset Allows for File Reading and Insertion
CVE-2024-34693ApacheApache Superset๐พ๐ก๐ฐ6.8MEDIUM