Apache Latest High Vulnerabilities

Session Management Vulnerability in Apache Roller by Apache

CVE-2025-24859

ApacheApache Roller📈👾📰10CRITICAL

SQL Injection Vulnerability in Apache Airflow Common SQL Provider

CVE-2025-30473

ApacheApache Airflow Common ...8.8HIGH

Code Execution Vulnerability in Apache Parquet Product by Apache

CVE-2025-30065

ApacheApache Parquet Java🥇📈💰👾🟡📰10CRITICAL

Code Injection Vulnerability in Apache Kylin

CVE-2025-30067

ApacheApache Kylin7.2HIGH

Cross-site Scripting Vulnerability in Apache VCL User Lookup Form

CVE-2024-53679

ApacheApache Vcl8.4HIGH

Relative Path Traversal Vulnerability in Apache Commons VFS by Apache

CVE-2025-27553

ApacheApache Commons Vfs7.5HIGH

Deserialization Vulnerability in Apache Seata by Apache

CVE-2024-47552

ApacheApache Seata (incubating)9.8CRITICAL

Remote Code Execution and Information Disclosure Vulnerability in Apache Tomcat Software

CVE-2025-24813

ApacheApache Tomcat🥇📈👾🟡EPSS 92%🦅📰9.8CRITICAL

Improper Neutralization of Formula Elements in Export CSV Feature of Apache Ranger

CVE-2024-55532

ApacheApache Ranger9.8CRITICAL

Deserialization Vulnerability in Apache EventMesh Plugin

CVE-2024-56180

ApacheApache Eventmesh9.8CRITICAL

Class Serialization Filter Bypass in Apache Ignite by Apache

CVE-2024-52577

ApacheApache Ignite9.5CRITICAL

Cross-Site Scripting Vulnerability in Apache Atlas by Apache

CVE-2024-46910

ApacheApache Atlas7.1HIGH

SQL Injection Vulnerability in Apache Fineract by Apache

CVE-2024-32838

ApacheApache Fineract9.4CRITICAL

Remote Code Execution in Apache ShardingSphere ElasticJob-UI

CVE-2022-31764

ApacheApache Shardingsphere ...8.5HIGH

Denial of Service Vulnerability in Apache James Email Server

CVE-2024-37358

ApacheApache James Server8.6HIGH

Memory Consumption Vulnerability in Apache James Server

CVE-2024-45626

ApacheApache James Server7.5HIGH

Privilege Escalation Vulnerability in Apache Cassandra

CVE-2025-23015

ApacheApache Cassandra8.8HIGH

Pseudo-Random Number Generator Flaw in Apache Cocoon by Apache

CVE-2025-24783

ApacheApache Cocoon7.5HIGH

Code Injection Vulnerability in Ambari Alert Definition by Apache

CVE-2025-23196

ApacheApache Ambari8.8HIGH

XML External Entity Vulnerability in Apache Ambari and Oozie

CVE-2025-23195

ApacheApache Ambari7.5HIGH

SSRF Vulnerability in Apache Ranger UI Version 2.4.0

CVE-2024-45479

ApacheApache Ranger9.1CRITICAL

Remote Code Injection Vulnerability in Apache Ambari Metrics by Apache

CVE-2024-51941

ApacheApache Ambari8.8HIGH

Denial of Service Vulnerability in Apache CXF Software

CVE-2025-23184

ApacheApache Cxf7.5HIGH

Insufficient Session Expiration in Apache Airflow Fab Provider

CVE-2024-45033

ApacheApache Airflow Fab Pro...8.1HIGH

Deserialization Vulnerability in Apache OpenMeetings by The Apache Software Foundation

CVE-2024-54676

ApacheApache Openmeetings9.8CRITICAL

Vulnerability Published:

Sort By:

14 April 2025

Session Management Vulnerability in Apache Roller by Apache

7 April 2025

SQL Injection Vulnerability in Apache Airflow Common SQL Provider

1 April 2025

Code Execution Vulnerability in Apache Parquet Product by Apache

27 March 2025

Code Injection Vulnerability in Apache Kylin

25 March 2025

Cross-site Scripting Vulnerability in Apache VCL User Lookup Form

23 March 2025

Relative Path Traversal Vulnerability in Apache Commons VFS by Apache

20 March 2025

Deserialization Vulnerability in Apache Seata by Apache

10 March 2025

Remote Code Execution and Information Disclosure Vulnerability in Apache Tomcat Software

3 March 2025

Improper Neutralization of Formula Elements in Export CSV Feature of Apache Ranger

14 February 2025

Deserialization Vulnerability in Apache EventMesh Plugin

Class Serialization Filter Bypass in Apache Ignite by Apache

13 February 2025

Cross-Site Scripting Vulnerability in Apache Atlas by Apache

12 February 2025

SQL Injection Vulnerability in Apache Fineract by Apache

6 February 2025

Remote Code Execution in Apache ShardingSphere ElasticJob-UI

Denial of Service Vulnerability in Apache James Email Server

Memory Consumption Vulnerability in Apache James Server

4 February 2025

Privilege Escalation Vulnerability in Apache Cassandra

27 January 2025

Pseudo-Random Number Generator Flaw in Apache Cocoon by Apache

21 January 2025

Code Injection Vulnerability in Ambari Alert Definition by Apache

XML External Entity Vulnerability in Apache Ambari and Oozie

SSRF Vulnerability in Apache Ranger UI Version 2.4.0

Remote Code Injection Vulnerability in Apache Ambari Metrics by Apache

Denial of Service Vulnerability in Apache CXF Software

8 January 2025

Insufficient Session Expiration in Apache Airflow Fab Provider

Deserialization Vulnerability in Apache OpenMeetings by The Apache Software Foundation