Apache Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by apache
Vulnerability Published:
🗓️ Published
- Anytime
Sort By:
🗓️ Published Date
- Descending
Authorization Flaw in Apache Airflow's Execution API Affects Multiple Versions
CVE-2026-30911ApacheApache Airflow8.1HIGHSession Token Exposure in Apache Airflow by Apache
CVE-2026-28779ApacheApache Airflow7.5HIGHCode Execution Vulnerability in Apache Spark History Server
CVE-2025-54920ApacheApache Spark8.8HIGHCode Execution Vulnerability in Apache Airflow Triggerer
CVE-2025-69219ApacheApache Airflow Provide...8.8HIGHImproper Input Validation in Apache IoTDB by Apache
CVE-2026-24713ApacheApache Iotdb9.8CRITICALVulnerability in Apache IoTDB Affects Multiple Versions
CVE-2026-24015ApacheApache Iotdb9.8CRITICALMissing Authentication in Apache Artemis and ActiveMQ Messaging Services
CVE-2026-27446ApacheApache Artemis9.3CRITICALRemote Code Execution Risk in Apache Ranger by Apache
CVE-2025-59059ApacheApache Ranger9.8CRITICALImproper Authorization in Apache Superset Affects Data Access Controls
CVE-2026-23982ApacheApache Superset7.1HIGHImproper Input Validation in Apache Superset for PostgreSQL Connections
CVE-2026-23984ApacheApache Superset7.1HIGHRemote Code Execution Vulnerability in Apache Airflow by Apache
CVE-2024-56373ApacheApache Airflow8.4HIGHDeserialization Vulnerability in Apache Camel LevelDB Component by Apache
CVE-2026-25747ApacheApache Camel👾🟡8.8HIGHCross-Realm Token Acceptance Bypass in Apache Camel Keycloak Component
CVE-2026-23552ApacheApache Camel👾🟡9.1CRITICALImproper Input Validation in Apache Tomcat Native and Apache Tomcat
CVE-2026-24734ApacheApache Tomcat Native7.4HIGHImproper Input Validation in Apache Tomcat Affects Multiple Versions
CVE-2025-66614ApacheApache Tomcat7.6HIGHUse After Free Vulnerability in Apache Arrow C++ Software
CVE-2026-25087ApacheApache Arrow7HIGHAuthorization Flaw in Apache NiFi Affects Configuration Property Updates
CVE-2026-25903ApacheApache Nifi8.7HIGHCode Injection Vulnerability in Apache Avro Java SDK
CVE-2025-33042ApacheApache Avro Java Sdk7.3HIGHXPath Injection Vulnerability in Apache HertzBeat by Apache
CVE-2026-24343ApacheApache Hertzbeat8.8HIGHAuthentication Bypass in Apache Druid with LDAP Authentication
CVE-2026-23906ApacheApache Druid9.8CRITICALUnauthorized Access to Deleted Content in Apache Answer
CVE-2026-24735ApacheApache Answer7.5HIGHCommand Injection Vulnerability in Apache Continuum by Apache
CVE-2016-15057ApacheApache ContinuumEPSS 37%9.9CRITICALOut-of-bounds Write Vulnerability in Apache Hadoop HDFS Native Client
CVE-2025-27821ApacheHdfs Native Client7.3HIGHUnauthorized Access in Apache Solr Due to Input Validation Flaw
CVE-2026-22022ApacheApache Solr8.2HIGHInput Validation Flaw in Apache Solr Affects Core Creation Process
CVE-2026-22444ApacheApache Solr👾🟡7.1HIGH