Apache Exploited Vulnerabilities
Apache vulnerabilities known to be exploited. Over the past 365 days, sorted by exploit discovery date.
Vulnerability Published:
🗓️ Published
- Anytime
Sort By:
🗓️ Published Date
- Descending
Access Control Issue in Apache CloudStack Affects User Comments
CVE-2025-22828ApacheApache Cloudstack👾🟡Race Condition Vulnerability in Apache Tomcat Affects Multiple Versions
CVE-2024-56337ApacheApache Tomcat🥇📈👾📰9.8CRITICALAuthorization Flaw in Apache NiFi Affecting Parameter Contexts and Controller Services
CVE-2024-56512Apache Software F...Nifi👾🟡5.4MEDIUMAuthentication Bypass Vulnerability in Apache HugeGraph-Server
CVE-2024-43441ApacheApache Hugegraph-server👾📰SQL Injection Vulnerability in Apache Traffic Control
CVE-2024-45387ApacheApache Traffic Control📈💰👾📰8.8HIGHRace Condition Vulnerability in Apache Tomcat Leading to Remote Code Execution
CVE-2024-50379ApacheApache Tomcat🥇📈👾🟡📰9.8CRITICALPartial Fix for Content-Type Based Configuration Ignores Use of Legacy Handlers, Leading to Source Code Disclosure
CVE-2024-40725ApacheApache Http Server🥇📈👾🟡📰5.3MEDIUMArbitrary File Write Vulnerability in ActiveMQ Artemis Could Lead to RCE
CVE-2023-50780ApacheApache ActiveMQ Artemis👾🟡8.8HIGHCode Execution or Source Code Disclosure Vulnerability in Apache HTTP Server's mod_rewrite
CVE-2024-38475ApacheApache Http Server👾🟡9.1CRITICALFlawed File Upload Logic in Apache Struts Exposes Vulnerability
CVE-2024-53677ApacheApache Struts🥇📈💰👾🟡📰Apache Tomcat Denial of Service Vulnerability Affects Multiple Versions
CVE-2024-24549ApacheApache Tomcat👾🟡7.5HIGHIncorrect Object Recycling and Reuse Vulnerability in Apache Tomcat
CVE-2024-52318ApacheApache Tomcat👾🟡6.1MEDIUMIncorrect Object Recycling Vulnerability Affects Apache Tomcat Versions
CVE-2024-52317ApacheApache Tomcat👾🟡6.5MEDIUMUnchecked Error Condition Vulnerability Affects Apache Tomcat
CVE-2024-52316ApacheApache Tomcat👾🟡9.8CRITICALApache Avro Java SDK Vulnerability
CVE-2024-47561ApacheApache Avro Java Sdk👾📰Malicious Input Validation Flaw Affects Apache HTTP Server
CVE-2023-38709ApacheApache Http Server👾🟡7.3HIGHApache OFBiz vulnerable to 'Forced Browsing' (Direct Request) attack
CVE-2024-45195ApacheApache Ofbiz👾EPSS 75%🦅📰7.5HIGHApache OFBiz vulnerable to Path Traversal attack
CVE-2024-36104ApacheApache Ofbiz👾📰9.1CRITICALApache OFBiz Fixes Path Traversal Vulnerability
CVE-2024-32113ApacheApache Ofbiz💰👾🟡EPSS 93%🦅📰9.8CRITICALIncorrect Authorization Vulnerability Affects Apache OFBiz Through 18.12.14
CVE-2024-38856ApacheApache Ofbiz🥇📈💰👾🟡EPSS 94%🦅📰9.8CRITICALImproper Input Validation Vulnerability in Apache Superset Allows for File Reading and Insertion
CVE-2024-34693ApacheApache Superset👾🟡📰6.8MEDIUMSAML Authentication Vulnerability in CloudStack Environments
CVE-2024-41107ApacheApache Cloudstack👾EPSS 84%📰8.1HIGHImproper Handling of Exceptional Conditions, Uncontrolled Resource Consumption Vulnerability Affects Apache Tomcat
CVE-2024-34750ApacheApache Tomcat👾📰Cryptographically Weak Pseudo-Random Number Generator (PRNG) Vulnerability Affects Apache StreamPipes from 0.69.0 to 0.93.0
CVE-2024-29868ApacheApache Streampipes👾🟡RCE Vulnerability in Apache HugeGraph-Server
CVE-2024-27348ApacheApache Hugegraph-server📈👾🟡EPSS 96%🦅📰9.8CRITICAL