Apache Latest Vulnerabilities
Latest vulnerabilities published by apache
Vulnerability Published:
🗓️ Published
- Anytime
Sort By:
🗓️ Published Date
- Descending
Reflected XSS Vulnerability in Apache Syncope's Enduser Login Page
CVE-2026-23794ApacheApache Syncope6.8MEDIUMImproper XML Handling in Apache Syncope Console
CVE-2026-23795ApacheApache Syncope4.9MEDIUMCommand Injection Vulnerability in Apache Continuum by Apache
CVE-2016-15057ApacheApache ContinuumEPSS 32%9.9CRITICALOut-of-bounds Write Vulnerability in Apache Hadoop HDFS Native Client
CVE-2025-27821ApacheHdfs Native Client7.3HIGHDeserialization Vulnerability in Apache Karaf Decanter Exposes Unauthorized Access
CVE-2026-24656ApacheApache Karaf3.7LOWUnauthorized Access in Apache Solr Due to Input Validation Flaw
CVE-2026-22022ApacheApache Solr8.2HIGHInput Validation Flaw in Apache Solr Affects Core Creation Process
CVE-2026-22444ApacheApache Solr👾🟡7.1HIGHInformation Leakage Vulnerability in Apache Linkis Affects Sensitive Configuration Logs
CVE-2025-59355ApacheApache Linkis6.5MEDIUMUnauthorized File Access Vulnerability in Apache Linkis
CVE-2025-29847ApacheApache Linkis7.5HIGHAuthentication Exposure in Apache Airflow Connections
CVE-2025-68675ApacheApache Airflow7.5HIGHSensitive Data Exposure in Apache Airflow by The Apache Software Foundation
CVE-2025-68438ApacheApache Airflow7.5HIGHRemote Command Injection in Apache bRPC Heap Profiler Service
CVE-2025-60021ApacheApache Brpc👾🟡9.8CRITICALCypher Injection Vulnerability in Apache Camel by Apache
CVE-2025-66169ApacheApache Camel Neo4j5.3MEDIUMMissing XML Validation Vulnerability in Apache Struts by Apache
CVE-2025-68493ApacheApache Struts👾📰8.1HIGHData Transmission Without Encryption Vulnerability in Apache NimBLE
CVE-2025-52435ApacheApache Mynewt Nimble7.5HIGHOut-of-bounds Read Vulnerability in Apache NimBLE HCI Driver
CVE-2025-53470ApacheApache Mynewt Nimble3.1LOWNULL Pointer Dereference Vulnerability in Apache NimBLE Software
CVE-2025-53477ApacheApache Mynewt Nimble7.5HIGHAuthentication Bypass Vulnerability in Apache NimBLE
CVE-2025-62235ApacheApache Mynewt Nimble8.1HIGHInsecure SSL Certificate Trust in Uniffle HTTP Client - Uniffle Vendor
CVE-2025-68637ApacheApache Uniffle9.1CRITICALImproper XML Handling in Apache SIS Leading to File Exposure
CVE-2025-68280ApacheApache Sis6.5MEDIUMConfiguration Bypass in Apache Kyuubi Server by The Apache Software Foundation
CVE-2025-66518ApacheApache Kyuubi8.8HIGHUser ID Creation Vulnerability in Apache StreamPipes by Apache
CVE-2025-47411ApacheApache Streampipes8.1HIGHUse After Free Vulnerability in Apache NuttX RTOS
CVE-2025-48769ApacheApache Nuttx Rtos5.3MEDIUMDenial of Service Vulnerability in Apache NuttX RTOS Affecting File Systems
CVE-2025-48768ApacheApache Nuttx Rtos5.3MEDIUMJava Object Deserialization Vulnerability in Apache NiFi Versions 1.20.0 to 2.6.0
CVE-2025-66524ApacheApache Nifi7.5HIGH