Apache Latest High Vulnerabilities

Remote Code Execution Vulnerability in Apache Airflow Provider by Edge3

CVE-2025-67895

ApacheApache Airflow Provide...9.8CRITICAL

Weak Encryption in Apache StreamPark Affects Sensitive Data Security

CVE-2025-54981

ApacheApache Streampark7.5HIGH

Remote Code Execution Vulnerability in Apache HugeGraph PD Store

CVE-2025-26866

ApacheApache Hugegraph-server8.8HIGH

Authorization Bypass Vulnerability in Apache Fineract by Apache

CVE-2025-58137

ApacheApache Fineract8.1HIGH

Insufficiently Protected Credentials in Apache Fineract by Apache

CVE-2025-58130

ApacheApache Fineract9.1CRITICAL

Weak Password Requirements in Apache Fineract by Apache Software Foundation

CVE-2025-23408

ApacheApache Fineract8.5HIGH

Denial of Service Flaw in Apache Struts Affecting Multiple Versions

CVE-2025-66675

ApacheApache Struts8.2HIGH

Server Side Includes Vulnerability in Apache HTTP Server by The Apache Software Foundation

CVE-2025-58098

ApacheApache Http Server8.3HIGH

Server-Side Request Forgery Vulnerability in Apache HTTP Server for Windows

CVE-2025-59775

ApacheApache Http Server7.5HIGH

Integer Overflow Vulnerability in Apache HTTP Server

CVE-2025-55753

ApacheApache Http Server7.5HIGH

XML External Entity Injection in Apache Tika Products

CVE-2025-66516

ApacheApache Tika Core👾🟡📰10CRITICAL

Denial of Service Vulnerability in Apache Struts by Apache

CVE-2025-64775

ApacheApache Struts👾📰7.5HIGH

Uncontrolled Recursion Vulnerability in Apache bRPC Affects Remote Servers

CVE-2025-59789

ApacheApache Brpc7.5HIGH

Authentication Vulnerability in Apache Druid's Kerberos Authenticator

CVE-2025-59390

ApacheApache Druid9.8CRITICAL

AES Encryption Vulnerability in Apache Syncope by Apache

CVE-2025-65998

ApacheApache Syncope7.5HIGH

Unrestricted Upload of Dangerous File Type in Apache OFBiz

CVE-2025-59118

ApacheApache Ofbiz👾🟡7.3HIGH

Authorization Vulnerability in Apache OpenOffice Allows External Links to Load Unprompted

CVE-2025-64405

ApacheApache Openoffice7.5HIGH

Authorization Vulnerability in Apache OpenOffice Document Processing

CVE-2025-64404

ApacheApache Openoffice7.5HIGH

Authorization Vulnerability in Apache OpenOffice Calc Spreadsheet

CVE-2025-64403

ApacheApache Openoffice8.1HIGH

Authorization Flaw in Apache OpenOffice Allows External Link Loading

CVE-2025-64401

ApacheApache Openoffice7.5HIGH

Remote Code Execution Vulnerability in Pig-Mesh by Apache

CVE-2025-63690

ApachePig-Mesh9.1CRITICAL

Sensitive Data Exposure Vulnerability in Apache APISIX by Apache

CVE-2025-62232

ApacheApache Apisix7.5HIGH

Relative Path Traversal Vulnerability in Apache Tomcat by Apache

CVE-2025-55752

ApacheApache Tomcat🥇📈👾🟡📰7.5HIGH

Improper Control Sequence Neutralization in Apache Tomcat by Apache Software Foundation

CVE-2025-55754

ApacheApache Tomcat9.6CRITICAL

Remote Code Execution in Apache Syncope Due to Groovy Code Injection Vulnerability

CVE-2025-57738

ApacheApache Syncope7.2HIGH

Vulnerability Published:

Sort By:

17 December 2025

Remote Code Execution Vulnerability in Apache Airflow Provider by Edge3

12 December 2025

Weak Encryption in Apache StreamPark Affects Sensitive Data Security

Remote Code Execution Vulnerability in Apache HugeGraph PD Store

Authorization Bypass Vulnerability in Apache Fineract by Apache

Insufficiently Protected Credentials in Apache Fineract by Apache

Weak Password Requirements in Apache Fineract by Apache Software Foundation

10 December 2025

Denial of Service Flaw in Apache Struts Affecting Multiple Versions

5 December 2025

Server Side Includes Vulnerability in Apache HTTP Server by The Apache Software Foundation

Server-Side Request Forgery Vulnerability in Apache HTTP Server for Windows

Integer Overflow Vulnerability in Apache HTTP Server

4 December 2025

XML External Entity Injection in Apache Tika Products

1 December 2025

Denial of Service Vulnerability in Apache Struts by Apache

Uncontrolled Recursion Vulnerability in Apache bRPC Affects Remote Servers

26 November 2025

Authentication Vulnerability in Apache Druid's Kerberos Authenticator

24 November 2025

AES Encryption Vulnerability in Apache Syncope by Apache

12 November 2025

Unrestricted Upload of Dangerous File Type in Apache OFBiz

Authorization Vulnerability in Apache OpenOffice Allows External Links to Load Unprompted

Authorization Vulnerability in Apache OpenOffice Document Processing

Authorization Vulnerability in Apache OpenOffice Calc Spreadsheet

Authorization Flaw in Apache OpenOffice Allows External Link Loading

7 November 2025

Remote Code Execution Vulnerability in Pig-Mesh by Apache

31 October 2025

Sensitive Data Exposure Vulnerability in Apache APISIX by Apache

27 October 2025

Relative Path Traversal Vulnerability in Apache Tomcat by Apache

Improper Control Sequence Neutralization in Apache Tomcat by Apache Software Foundation

20 October 2025

Remote Code Execution in Apache Syncope Due to Groovy Code Injection Vulnerability