Apache Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by apache
Vulnerability Published:
🗓️ Published
- Anytime
Sort By:
🗓️ Published Date
- Descending
Improper Authorization in Apache Superset Affects Data Access Controls
CVE-2026-23982ApacheApache Superset7.1HIGHImproper Input Validation in Apache Superset for PostgreSQL Connections
CVE-2026-23984ApacheApache Superset7.1HIGHRemote Code Execution Vulnerability in Apache Airflow by Apache
CVE-2024-56373ApacheApache Airflow8.4HIGHDeserialization Vulnerability in Apache Camel LevelDB Component by Apache
CVE-2026-25747ApacheApache Camel👾🟡8.8HIGHCross-Realm Token Acceptance Bypass in Apache Camel Keycloak Component
CVE-2026-23552ApacheApache Camel👾🟡9.1CRITICALUse After Free Vulnerability in Apache Arrow C++ Software
CVE-2026-25087ApacheApache Arrow7HIGHAuthorization Flaw in Apache NiFi Affects Configuration Property Updates
CVE-2026-25903ApacheApache Nifi8.7HIGHCode Injection Vulnerability in Apache Avro Java SDK
CVE-2025-33042ApacheApache Avro Java Sdk7.3HIGHXPath Injection Vulnerability in Apache HertzBeat by Apache
CVE-2026-24343ApacheApache Hertzbeat8.8HIGHAuthentication Bypass in Apache Druid with LDAP Authentication
CVE-2026-23906ApacheApache Druid9.8CRITICALUnauthorized Access to Deleted Content in Apache Answer
CVE-2026-24735ApacheApache Answer7.5HIGHCommand Injection Vulnerability in Apache Continuum by Apache
CVE-2016-15057ApacheApache ContinuumEPSS 37%9.9CRITICALOut-of-bounds Write Vulnerability in Apache Hadoop HDFS Native Client
CVE-2025-27821ApacheHdfs Native Client7.3HIGHUnauthorized Access in Apache Solr Due to Input Validation Flaw
CVE-2026-22022ApacheApache Solr8.2HIGHInput Validation Flaw in Apache Solr Affects Core Creation Process
CVE-2026-22444ApacheApache Solr👾🟡7.1HIGHUnauthorized File Access Vulnerability in Apache Linkis
CVE-2025-29847ApacheApache Linkis7.5HIGHAuthentication Exposure in Apache Airflow Connections
CVE-2025-68675ApacheApache Airflow7.5HIGHSensitive Data Exposure in Apache Airflow by The Apache Software Foundation
CVE-2025-68438ApacheApache Airflow7.5HIGHRemote Command Injection in Apache bRPC Heap Profiler Service
CVE-2025-60021ApacheApache Brpc👾🟡9.8CRITICALMissing XML Validation Vulnerability in Apache Struts by Apache
CVE-2025-68493ApacheApache Struts👾🟡📰8.1HIGHData Transmission Without Encryption Vulnerability in Apache NimBLE
CVE-2025-52435ApacheApache Mynewt Nimble7.5HIGHNULL Pointer Dereference Vulnerability in Apache NimBLE Software
CVE-2025-53477ApacheApache Mynewt Nimble7.5HIGHAuthentication Bypass Vulnerability in Apache NimBLE
CVE-2025-62235ApacheApache Mynewt Nimble8.1HIGHInsecure SSL Certificate Trust in Uniffle HTTP Client - Uniffle Vendor
CVE-2025-68637ApacheApache Uniffle9.1CRITICALConfiguration Bypass in Apache Kyuubi Server by The Apache Software Foundation
CVE-2025-66518ApacheApache Kyuubi8.8HIGH