Apache Popular Vulnerabilities

Popular vulnerabilities are those that have been exploited or trending within the past 365 days.

Partial Fix for Content-Type Based Configuration Ignores Use of Legacy Handlers, Leading to Source Code Disclosure

CVE-2024-40725
ApacheApache Http ServerπŸ”₯πŸ˜„πŸ‘Ύ5.3MEDIUM

Incorrect Authorization Vulnerability Affects Apache OFBiz Through 18.12.14

CVE-2024-38856
ApacheApache OfbizπŸ”₯πŸ˜„πŸ‘ΎπŸŸ£9.8CRITICAL

Flawed File Upload Logic in Apache Struts Exposes Vulnerability

CVE-2024-53677
ApacheApache StrutsπŸ”₯πŸ˜„πŸ‘Ύ

Race Condition Vulnerability in Apache Tomcat Leading to Remote Code Execution

CVE-2024-50379
ApacheApache TomcatπŸ”₯πŸ˜„πŸ‘Ύ9.8CRITICAL

Race Condition Vulnerability in Apache Tomcat Affects Multiple Versions

CVE-2024-56337
ApacheπŸ”₯πŸ˜„

SQL Injection Vulnerability in Apache Traffic Control

CVE-2024-45387
ApacheApache Traffic ControlπŸ˜„πŸ‘Ύ9.9CRITICAL

RCE Vulnerability in Apache HugeGraph-Server

CVE-2024-27348
ApacheApache Hugegraph-serverπŸ˜„πŸ‘ΎπŸŸ£9.8CRITICAL

Apache Tomcat Vulnerability: Generation of Error Message Containing Sensitive Information

CVE-2024-21733
ApacheApache TomcatπŸ˜„πŸ‘Ύ5.3MEDIUM

Server-Side Request Forgery (SSRF) and Improper Control of Generation of Code (Code Injection) Vulnerability in Apache OFBiz

CVE-2024-45507
ApacheApache OfbizπŸ˜„9.8CRITICAL

Incorrect Object Recycling and Reuse Vulnerability in Apache Tomcat

CVE-2024-52318
ApacheπŸ‘Ύ

Incorrect Object Recycling Vulnerability Affects Apache Tomcat Versions

CVE-2024-52317
ApacheπŸ‘Ύ

Unchecked Error Condition Vulnerability Affects Apache Tomcat

CVE-2024-52316
ApacheApache TomcatπŸ‘Ύ

Arbitrary File Write Vulnerability in ActiveMQ Artemis Could Lead to RCE

CVE-2023-50780
ApacheApache ActiveMQ ArtemisπŸ‘Ύ8.8HIGH

Apache Avro Java SDK Vulnerability

CVE-2024-47561
ApacheApache Avro Java SdkπŸ‘Ύ

Apache OFBiz vulnerable to 'Forced Browsing' (Direct Request) attack

CVE-2024-45195
ApacheApache OfbizπŸ‘Ύ7.5HIGH

SAML Authentication Vulnerability in CloudStack Environments

CVE-2024-41107
ApacheApache CloudstackπŸ‘Ύ8.1HIGH

Improper Handling of Exceptional Conditions, Uncontrolled Resource Consumption Vulnerability Affects Apache Tomcat

CVE-2024-34750
ApacheApache TomcatπŸ‘Ύ

Code Execution or Source Code Disclosure Vulnerability in Apache HTTP Server's mod_rewrite

CVE-2024-38475
ApacheApache Http ServerπŸ‘Ύ

Cryptographically Weak Pseudo-Random Number Generator (PRNG) Vulnerability Affects Apache StreamPipes from 0.69.0 to 0.93.0

CVE-2024-29868
ApacheApache StreampipesπŸ‘Ύ

Improper Input Validation Vulnerability in Apache Superset Allows for File Reading and Insertion

CVE-2024-34693
ApacheApache SupersetπŸ‘Ύ6.8MEDIUM

Apache OFBiz vulnerable to Path Traversal attack

CVE-2024-36104
ApacheApache OfbizπŸ‘Ύ

Apache OFBiz Fixes Path Traversal Vulnerability

CVE-2024-32113
ApacheApache OfbizπŸ‘ΎπŸŸ£9.8CRITICAL

nghttp2 Temporarily Buffers Incoming Headers to Prevent Memory Exhaustion

CVE-2024-27316
ApacheApache Http ServerπŸ‘Ύ7.5HIGH

Malicious Input Validation Flaw Affects Apache HTTP Server

CVE-2023-38709
ApacheApache Http ServerπŸ‘Ύ

Apache Tomcat Denial of Service Vulnerability Affects Multiple Versions

CVE-2024-24549
ApacheApache TomcatπŸ‘Ύ

Apache James Vulnerability: Deserialization of Untrusted Data Could Lead to Privilege Escalation

CVE-2023-51518
ApacheApache James ServerπŸ‘Ύ

Deserialization of Untrusted Data Vulnerability

CVE-2024-23114
ApacheApache CamelπŸ‘Ύ

Allocation of Resources Without Limits or Throttling Vulnerability

CVE-2024-26308
ApacheApache Commons CompressπŸ‘Ύ5.5MEDIUM

Improper Control of Dynamically-Managed Code Resources, Unrestricted Upload of File with Dangerous Type, Inclusion of Functionality from Untrusted Control Sphere Vulnerability in Apache Solr

CVE-2023-50386
ApacheApache SolrπŸ‘Ύ8.8HIGH