Apache Latest High Vulnerabilities

SQL Injection Vulnerability in Apache Superset by Apache

CVE-2025-48912

ApacheApache Superset7.1HIGH

Case Sensitivity Vulnerability in Apache Tomcat GCI Servlet

CVE-2025-46701

ApacheApache Tomcat👾📰7.3HIGH

Improper Access Control in Apache Commons BeanUtils

CVE-2025-48734

ApacheApache Commons Beanuti...8.8HIGH

Deserialization Vulnerability in Apache InLong Affects Multiple Versions

CVE-2025-27528

ApacheApache Inlong9.1CRITICAL

Buffer Overflow Vulnerability in Apache NuttX Bluetooth Stack

CVE-2025-35003

ApacheApache Nuttx Rtos9.8CRITICAL

Sensitive Information Exposure in Apache IoTDB

CVE-2025-26864

ApacheApache Iotdb7.5HIGH

Sensitive Information Exposure in Apache IoTDB JDBC Driver

CVE-2025-26795

ApacheApache Iotdb Jdbc Driver7.5HIGH

Remote Code Execution Vulnerability in Apache IoTDB

CVE-2024-24780

ApacheApache Iotdb9.8CRITICAL

Code Execution Vulnerability in Apache Parquet's parquet-avro Module

CVE-2025-46762

ApacheApache Parquet Java👾📰7.1HIGH

Improper Neutralization in Apache Tomcat's Rewrite Rules

CVE-2025-31651

ApacheApache Tomcat9.8CRITICAL

Improper Input Validation in Apache Tomcat by Apache

CVE-2025-31650

ApacheApache Tomcat📈👾🟡7.5HIGH

Domain Validation Flaw in Apache HttpClient Impacts Cookie Management

CVE-2025-27820

ApacheApache Httpcomponents7.5HIGH

Improper Input Validation Vulnerability in Apache Kvrocks by Apache

CVE-2025-26413

ApacheApache Kvrocks7.5HIGH

Deserialization Vulnerability in Apache ActiveMQ NMS OpenWire Client

CVE-2025-29953

ApacheApache ActiveMQ Nms Op...9.8CRITICAL

Session Management Vulnerability in Apache Roller by Apache

CVE-2025-24859

ApacheApache Roller📈👾📰10CRITICAL

SQL Injection Vulnerability in Apache Airflow Common SQL Provider

CVE-2025-30473

ApacheApache Airflow Common ...8.8HIGH

Code Execution Vulnerability in Apache Parquet Product by Apache

CVE-2025-30065

ApacheApache Parquet Java🥇📈💰👾🟡📰10CRITICAL

Code Injection Vulnerability in Apache Kylin

CVE-2025-30067

ApacheApache Kylin7.2HIGH

Cross-site Scripting Vulnerability in Apache VCL User Lookup Form

CVE-2024-53679

ApacheApache Vcl8.4HIGH

Relative Path Traversal Vulnerability in Apache Commons VFS by Apache

CVE-2025-27553

ApacheApache Commons Vfs7.5HIGH

Deserialization Vulnerability in Apache Seata by Apache

CVE-2024-47552

ApacheApache Seata (incubating)9.8CRITICAL

Remote Code Execution and Information Disclosure Vulnerability in Apache Tomcat Software

CVE-2025-24813

ApacheApache Tomcat🥇📈👾🟡EPSS 93%🦅📰9.8CRITICAL

Improper Neutralization of Formula Elements in Export CSV Feature of Apache Ranger

CVE-2024-55532

ApacheApache Ranger9.8CRITICAL

Deserialization Vulnerability in Apache EventMesh Plugin

CVE-2024-56180

ApacheApache Eventmesh9.8CRITICAL

Class Serialization Filter Bypass in Apache Ignite by Apache

CVE-2024-52577

ApacheApache Ignite9.5CRITICAL

Vulnerability Published:

Sort By:

30 May 2025

SQL Injection Vulnerability in Apache Superset by Apache

29 May 2025

Case Sensitivity Vulnerability in Apache Tomcat GCI Servlet

28 May 2025

Improper Access Control in Apache Commons BeanUtils

Deserialization Vulnerability in Apache InLong Affects Multiple Versions

26 May 2025

Buffer Overflow Vulnerability in Apache NuttX Bluetooth Stack

14 May 2025

Sensitive Information Exposure in Apache IoTDB

Sensitive Information Exposure in Apache IoTDB JDBC Driver

Remote Code Execution Vulnerability in Apache IoTDB

6 May 2025

Code Execution Vulnerability in Apache Parquet's parquet-avro Module

28 April 2025

Improper Neutralization in Apache Tomcat's Rewrite Rules

Improper Input Validation in Apache Tomcat by Apache

24 April 2025

Domain Validation Flaw in Apache HttpClient Impacts Cookie Management

22 April 2025

Improper Input Validation Vulnerability in Apache Kvrocks by Apache

18 April 2025

Deserialization Vulnerability in Apache ActiveMQ NMS OpenWire Client

14 April 2025

Session Management Vulnerability in Apache Roller by Apache

7 April 2025

SQL Injection Vulnerability in Apache Airflow Common SQL Provider

1 April 2025

Code Execution Vulnerability in Apache Parquet Product by Apache

27 March 2025

Code Injection Vulnerability in Apache Kylin

25 March 2025

Cross-site Scripting Vulnerability in Apache VCL User Lookup Form

23 March 2025

Relative Path Traversal Vulnerability in Apache Commons VFS by Apache

20 March 2025

Deserialization Vulnerability in Apache Seata by Apache

10 March 2025

Remote Code Execution and Information Disclosure Vulnerability in Apache Tomcat Software

3 March 2025

Improper Neutralization of Formula Elements in Export CSV Feature of Apache Ranger

14 February 2025

Deserialization Vulnerability in Apache EventMesh Plugin

Class Serialization Filter Bypass in Apache Ignite by Apache