Apache Latest High Vulnerabilities

Code Execution Vulnerability in Apache Parquet's parquet-avro Module

CVE-2025-46762

ApacheApache Parquet Java👾📰7.1HIGH

Improper Neutralization in Apache Tomcat's Rewrite Rules

CVE-2025-31651

ApacheApache Tomcat9.8CRITICAL

Improper Input Validation in Apache Tomcat by Apache

CVE-2025-31650

ApacheApache Tomcat📈7.5HIGH

Domain Validation Flaw in Apache HttpClient Impacts Cookie Management

CVE-2025-27820

ApacheApache Httpcomponents7.5HIGH

Deserialization Vulnerability in Apache ActiveMQ NMS OpenWire Client

CVE-2025-29953

ApacheApache ActiveMQ Nms Op...9.8CRITICAL

Session Management Vulnerability in Apache Roller by Apache

CVE-2025-24859

ApacheApache Roller📈👾📰10CRITICAL

SQL Injection Vulnerability in Apache Airflow Common SQL Provider

CVE-2025-30473

ApacheApache Airflow Common ...8.8HIGH

Code Execution Vulnerability in Apache Parquet Product by Apache

CVE-2025-30065

ApacheApache Parquet Java🥇📈💰👾🟡📰10CRITICAL

Code Injection Vulnerability in Apache Kylin

CVE-2025-30067

ApacheApache Kylin7.2HIGH

Cross-site Scripting Vulnerability in Apache VCL User Lookup Form

CVE-2024-53679

ApacheApache Vcl8.4HIGH

Relative Path Traversal Vulnerability in Apache Commons VFS by Apache

CVE-2025-27553

ApacheApache Commons Vfs7.5HIGH

Deserialization Vulnerability in Apache Seata by Apache

CVE-2024-47552

ApacheApache Seata (incubating)9.8CRITICAL

Remote Code Execution and Information Disclosure Vulnerability in Apache Tomcat Software

CVE-2025-24813

ApacheApache Tomcat🥇📈👾🟡EPSS 93%🦅📰9.8CRITICAL

Improper Neutralization of Formula Elements in Export CSV Feature of Apache Ranger

CVE-2024-55532

ApacheApache Ranger9.8CRITICAL

Deserialization Vulnerability in Apache EventMesh Plugin

CVE-2024-56180

ApacheApache Eventmesh9.8CRITICAL

Class Serialization Filter Bypass in Apache Ignite by Apache

CVE-2024-52577

ApacheApache Ignite9.5CRITICAL

Cross-Site Scripting Vulnerability in Apache Atlas by Apache

CVE-2024-46910

ApacheApache Atlas7.1HIGH

SQL Injection Vulnerability in Apache Fineract by Apache

CVE-2024-32838

ApacheApache Fineract9.4CRITICAL

Remote Code Execution in Apache ShardingSphere ElasticJob-UI

CVE-2022-31764

ApacheApache Shardingsphere ...8.5HIGH

Denial of Service Vulnerability in Apache James Email Server

CVE-2024-37358

ApacheApache James Server8.6HIGH

Memory Consumption Vulnerability in Apache James Server

CVE-2024-45626

ApacheApache James Server7.5HIGH

Privilege Escalation Vulnerability in Apache Cassandra

CVE-2025-23015

ApacheApache Cassandra8.8HIGH

Pseudo-Random Number Generator Flaw in Apache Cocoon by Apache

CVE-2025-24783

ApacheApache Cocoon7.5HIGH

Remote Code Injection Vulnerability in Apache Ambari Metrics by Apache

CVE-2024-51941

ApacheApache Ambari8.8HIGH

Code Injection Vulnerability in Ambari Alert Definition by Apache

CVE-2025-23196

ApacheApache Ambari8.8HIGH

Vulnerability Published:

Sort By:

6 May 2025

Code Execution Vulnerability in Apache Parquet's parquet-avro Module

28 April 2025

Improper Neutralization in Apache Tomcat's Rewrite Rules

Improper Input Validation in Apache Tomcat by Apache

24 April 2025

Domain Validation Flaw in Apache HttpClient Impacts Cookie Management

18 April 2025

Deserialization Vulnerability in Apache ActiveMQ NMS OpenWire Client

14 April 2025

Session Management Vulnerability in Apache Roller by Apache

7 April 2025

SQL Injection Vulnerability in Apache Airflow Common SQL Provider

1 April 2025

Code Execution Vulnerability in Apache Parquet Product by Apache

27 March 2025

Code Injection Vulnerability in Apache Kylin

25 March 2025

Cross-site Scripting Vulnerability in Apache VCL User Lookup Form

23 March 2025

Relative Path Traversal Vulnerability in Apache Commons VFS by Apache

20 March 2025

Deserialization Vulnerability in Apache Seata by Apache

10 March 2025

Remote Code Execution and Information Disclosure Vulnerability in Apache Tomcat Software

3 March 2025

Improper Neutralization of Formula Elements in Export CSV Feature of Apache Ranger

14 February 2025

Deserialization Vulnerability in Apache EventMesh Plugin

Class Serialization Filter Bypass in Apache Ignite by Apache

13 February 2025

Cross-Site Scripting Vulnerability in Apache Atlas by Apache

12 February 2025

SQL Injection Vulnerability in Apache Fineract by Apache

6 February 2025

Remote Code Execution in Apache ShardingSphere ElasticJob-UI

Denial of Service Vulnerability in Apache James Email Server

Memory Consumption Vulnerability in Apache James Server

4 February 2025

Privilege Escalation Vulnerability in Apache Cassandra

27 January 2025

Pseudo-Random Number Generator Flaw in Apache Cocoon by Apache

21 January 2025

Remote Code Injection Vulnerability in Apache Ambari Metrics by Apache

Code Injection Vulnerability in Ambari Alert Definition by Apache