Apache Latest Vulnerabilities
Latest vulnerabilities published by apache
Vulnerability Published:
🗓️ Published
- Anytime
Sort By:
🗓️ Published Date
- Descending
SQL Function Restrictions in Apache Superset Uncovered
CVE-2026-23969ApacheApache Superset5.3MEDIUMSQL Injection Vulnerability in Apache Superset Affects Data Security
CVE-2026-23980ApacheApache Superset5.3MEDIUMImproper Authorization in Apache Superset Affects Data Access Controls
CVE-2026-23982ApacheApache Superset7.1HIGHSensitive Data Exposure in Apache Superset by Apache
CVE-2026-23983ApacheApache Superset2.3LOWImproper Input Validation in Apache Superset for PostgreSQL Connections
CVE-2026-23984ApacheApache Superset7.1HIGHSensitive Data Exposure in Apache Airflow Version Prior to 2.11.1
CVE-2025-27555ApacheApache Airflow6.5MEDIUMRemote Code Execution Vulnerability in Apache Airflow by Apache
CVE-2024-56373ApacheApache Airflow8.4HIGHDeserialization Vulnerability in Apache Camel LevelDB Component by Apache
CVE-2026-25747ApacheApache Camel👾🟡8.8HIGHCross-Realm Token Acceptance Bypass in Apache Camel Keycloak Component
CVE-2026-23552ApacheApache Camel👾🟡9.1CRITICALSensitive Data Exposure in Apache Airflow UI Error Reporting
CVE-2025-65995ApacheApache Airflow6.5MEDIUMImproper Input Validation in Apache Tomcat Native and Apache Tomcat
CVE-2026-24734ApacheApache Tomcat NativeImproper Input Validation in Apache Tomcat Affects Multiple Versions
CVE-2026-24733ApacheApache TomcatImproper Input Validation in Apache Tomcat Affects Multiple Versions
CVE-2025-66614ApacheApache TomcatUse After Free Vulnerability in Apache Arrow C++ Software
CVE-2026-25087ApacheApache Arrow7HIGHAuthorization Flaw in Apache NiFi Affects Configuration Property Updates
CVE-2026-25903ApacheApache Nifi8.7HIGHCode Injection Vulnerability in Apache Avro Java SDK
CVE-2025-33042ApacheApache Avro Java Sdk7.3HIGHXPath Injection Vulnerability in Apache HertzBeat by Apache
CVE-2026-24343ApacheApache Hertzbeat8.8HIGHAuthentication Bypass in Apache Druid with LDAP Authentication
CVE-2026-23906ApacheApache Druid9.8CRITICALObservable Timing Discrepancy in Apache Shiro by Apache Software Foundation
CVE-2026-23901ApacheApache Shiro1LOWAuthorization Flaw in Apache Airflow Affects User Task Log Access
CVE-2026-22922ApacheApache Airflow6.5MEDIUMUnauthorized Data Exposure in Apache Airflow by Apache
CVE-2026-24098ApacheApache Airflow6.5MEDIUMAuthentication Bypass Vulnerability in Apache Shiro by Apache
CVE-2026-23903ApacheApache Shiro5.3MEDIUMUnauthorized Access to Deleted Content in Apache Answer
CVE-2026-24735ApacheApache Answer7.5HIGHReflected XSS Vulnerability in Apache Syncope's Enduser Login Page
CVE-2026-23794ApacheApache Syncope6.8MEDIUMImproper XML Handling in Apache Syncope Console
CVE-2026-23795ApacheApache Syncope4.9MEDIUM