Filter
Software
apache http server
370
apache tomcat
219
apache struts 2
90
apache airflow
83
apache openoffice
81
apache traffic server
71
apache cxf
52
apache ofbiz
52
apache superset
51
apache nifi
49
apache activemq
44
apache solr
41
apache hadoop
35
apache inlong
27
apache camel
26
apache cloudstack
25
apache openmeetings
25
apache tika
24
apache ambari
23
apache couchdb
23
apache jspwiki
22
apache geode
21
apache james
20
apache cassandra
19
apache spark
19
apache log4j
18
apache pulsar
18
apache archiva
17
apache ranger
17
apache shiro
17
apache dolphinscheduler
16
apache dubbo
16
apache hive
16
apache qpid
16
apache wicket
16
apache fineract
15
apache kylin
15
apache spamassassin
15
apache batik
14
apache cordova
14
apache atlas
13
apache guacamole
12
apache karaf
12
apache linkis
12
apache roller
12
apache tapestry
12
apache xerces-c++
12
apache commons compress
11
apache geronimo
11
apache storm
11
apache syncope
11
apache activemq artemis
10
apache iotdb
10
apache kafka
10
apache poi
10
apache portable runtime utility
10
apache tomee
10
apache druid
9
apache ignite
9
apache mesos
9
apache ozone
9
apache portable runtime
9
apache shenyu
9
apache sling api
9
apache struts
9
apache zeppelin
9
apache commons httpclient
8
apache derby
8
apache drill
8
apache hertzbeat
8
apache mina
8
apache pdfbox
8
apache qpid broker-j
8
apache axis
7
apache axis2
7
apache bookkeeper
7
apache impala
7
apache mod imap
7
apache myfaces
7
apache thrift
7
apache traffic control
7
apache xml security for c++
7
apache airflow hive provider
6
apache apisix
6
apache cxf fediz
6
apache jetspeed
6
apache juddi
6
apache mod python
6
apache pluto
6
apache rocketmq
6
apache santuario
6
apache streampark
6
apache tomcat connectors
6
apache zookeeper
6
apache allura
5
apache answer
5
apache avro
5
apache cocoon
5
apache commons fileupload
5
apache hbase
5
apache jackrabbit oak
5
apache tomcat native
5
apache wss4j
5
apache xalan-java
5
apache airflow spark provider
4
apache ant
4
apache any23
4
apache cordova ios
4
apache doris
4
apache groovy
4
apache hugegraph
4
apache jena
4
apache mod_auth_mellon
4
apache mod_perl
4
apache netbeans
4
apache nuttx
4
apache olingo
4
apache sling
4
apache sling cms
4
apache sshd
4
apache streampipes
4
apache submarine
4
apache virtual computing lab
4
apache brooklyn
3
apache commons beanutils
3
apache commons io
3
apache commons-beanutils
3
apache flink
3
apache flume
3
apache heron
3
apache iotdb web workbench
3
apache ivy
3
apache jmeter
3
apache libapreq2
3
apache libcloud
3
apache maven
3
apache mod_dav_svn
3
apache nifi minifi c++
3
apache oozie
3
apache pinot
3
apache pony mail
3
apache servicecomb
3
apache shardingsphere elasticjob-ui
3
apache shardingsphere-ui
3
apache skywalking
3
apache uima
3
apache unomi
3
apache xerces
3
apache accumulo
2
apache activemq legacy openwire module
2
apache airflow odbc provider
2
apache airflow providers google
2
apache airflow smtp provider
2
apache airflow sqoop provider
2
apache apisix dashboard
2
apache arrow r package
2
apache beam
2
apache brpc
2
apache calcite
2
apache cayenne
2
apache chainsaw
2
apache commons bcel
2
apache commons configuration
2
apache commons email
2
apache commons imaging
2
apache commons jxpath
2
apache deltaspike
2
apache directory ldap api
2
apache directory studio
2
apache eventmesh
2
apache felix web console
2
apache gobblin
2
apache helix
2
apache isis
2
apache james mime4j
2
apache jclouds
2
apache knox
2
apache kvrocks
2
apache log4net
2
apache lucene
2
apache mxnet
2
apache nifi registry
2
apache nutch
2
apache openwhisk
2
apache qpid proton
2
apache qpid-cpp
2
apache sentry
2
apache sling servlets post
2
apache soap
2
apache synapse
2
apache tiles
2
apache uimaducc
2
apache xml-rpc
2
apache xmlbeans
2
apache xmlrpc
2
apache activemq apollo
1
apache age
1
apache airavata django portal
1
apache airflow celery provider
1
apache airflow hdfs provider
1
apache airflow imap provider
1
apache airflow providers
1
apache airflow providers - docker
1
apache airflow providers amazon
1
apache airflow providers apache pinot
1
apache airflow providers for apache pig
1
apache airflow providers for mysql
1
apache airflow providers imap
1
apache airflow providers jdbc
1
apache airflow providers microsoft mssql
1
apache amqp 0-x jms client
1
apache arrow
1
apache asterixdb
1
apache aurora
1
apache axis2/c
1
apache calcite avatica
1
apache commons collections
1
apache commons daemon
1
apache commons jelly
1
apache commons net
1
apache commons text
1
apache continuum
1
apache cordova file transfer
1
apache cordova file transfer iphone os
1
apache cordova inappbrowser
1
apache cordova inappbrowser ios
1
apache ddlutils
1
apache felix health check webconsole plugin
1
apache felix health checks
1
apache flink stateful functions
1
apache formatting objects processor
1
apache fortress
1
apache hadoop yarn
1
apache hama
1
apache harmony
1
apache html/java api
1
apache httpasyncclient
1
apache hupa
1
apache identity backend
1
apache jakarta slide
1
apache java chassis
1
apache jena fuseki
1
apache jena sdb
1
apache jms client amqp
1
apache johnzon
1
apache jserv
1
apache kerby
1
apache kudu
1
apache ldap studio
1
apache libexpat
1
apache livy
1
apache log4cxx
1
apache manifoldcf
1
apache maven archetype
1
apache maven wagon
1
apache mod auth radius
1
apache mod digest
1
apache mod dontdothat
1
apache mod jk
1
apache mod_jk
1
apache ode
1
apache openjpa
1
apache opennlp
1
apache opentaps
1
apache orc
1
apache orchestration director engine
1
apache parquet-mr
1
apache plc4x
1
apache qpid dispatch
1
apache qpid proton-j
1
apache rampart/c
1
apache rave
1
apache rust sgx sdk
1
apache seata
1
apache seatunnel
1
apache shindig
1
apache sling auth core component
1
apache sling authentication service
1
apache sling commons json
1
apache sling commons messaging mail
1
apache sling jcr contentloader
1
apache sling resource merger
1
apache sling servlets resolver
1
apache sling xss protection api
1
apache sling xss protection api compat
1
apache standard taglibs
1
apache struts 2 showcase
1
apache systemds
1
apache teaclave sgx sdk
1
apache tuscany
1
apache uima-as
1
apache uimafit
1
apache unstructured information management architecture
1
apache velocity engine
1
apache velocity tools
1
apache wink
1
apache xerces-c++ xml parser
1
apache xml security library
1
apache xmlgraphics commons
1
Apache EventMeshApache EventMesh: raft Hessian Deserialization Vulnerability allowing remote code execution
9.8
First published (updated )
CVE-2024-56180: Apache EventMesh: raft Hessian Deserialization Vulnerability allowing mote code execution
First published (updated )
Apache IgniteApache Ignite: Possible RCE when deserializing incoming messages by the server node
9.5
First published (updated )
CVE-2024-52577: Apache Ignite: Possible RCE when deserializing incoming messages by the server node
First published (updated )
Apache CassandraCassandra-Lucene-Index allows bypass of Cassandra RBAC
8.8
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Apache AtlasApache Atlas: An authenticated user can perform XSS and potentially impersonate another user
7.1
First published (updated )
CVE-2024-46910: Apache Atlas: An authenticated user can perform XSS and potentially impersonate another user
First published (updated )
Apache FineractApache Fineract: SQL injection vulnerabilities in offices API endpoint
9.4
First published (updated )
CVE-2024-32838: Apache Fineract: SQL injection vulnerabilities in offices API endpoint
First published (updated )
Apache Cassandra: User with MODIFY permission on ALL KEYSPACES can escalate privileges to superuser via unsafe actions (4.0.16 only)
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2025-26467: Apache Cassandra: User with MODIFY permission on ALL KEYSPACES can escalate privileges to superuser via unsafe actions (4.0.16 only)
First published (updated )
CVE-2025-23015: Apache Cassandra: User with MODIFY permission on ALL KEYSPACES can escalate privileges to superuser via unsafe actions
First published (updated )
maven/org.apache.felix:org.apache.felix.webconsoleApache Felix Webconsole: XSS in services console
6.1
EPSS
0.04%
First published (updated )
FELIX-6751: CVE-2025-25247: Apache Felix Webconsole: XSS in services console
First published (updated )
Apache KvrocksApache Kvrocks: Cross-Protocol Scripting Vulnerability
6.5
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2025-25069: Apache Kvrocks: Cross-Protocol Scripting Vulnerability
First published (updated )
Apache ShardingSphere ElasticJob-UIApache ShardingSphere ElasticJob-UI allows RCE via event trace data source JDBC
8.5
First published (updated )
BleepingComputerCISA orders agencies to patch Linux kernel bug exploited in attacks
First published (updated )
News
BleepingComputerApache JamesApache James: denial of service through JMAP HTML to text conversion
7.5
First published (updated )
maven/org.apache.james.protocols:protocols-imapApache James: denial of service through the use of IMAP literals
8.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2024-45626: Apache James: denial of service through JMAP HTML to text conversion
First published (updated )
CVE-2024-37358: Apache James: denial of service through the use of IMAP literals
First published (updated )
BleepingComputerCISA tags Microsoft .NET and Apache OFBiz bugs as exploited in attacks
First published (updated )
News
BleepingComputerApache DorisApache Doris: allows admin users to read arbitrary files through the REST API
5.4
First published (updated )
CVE-2024-48019: Apache Doris: allows admin users to ad arbitrary files through the ST API
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
maven/org.apache.cassandra:cassandra-allApache Cassandra: CassandraNetworkAuthorizer and CassandraCIDRAuthorizer can be bypassed allowing access to different network regions
5.4
EPSS
0.04%
First published (updated )
maven/org.apache.cassandra:cassandra-allApache Cassandra: User with MODIFY permission on ALL KEYSPACES can escalate privileges to superuser via unsafe actions
First published (updated )
maven/org.apache.cassandra:cassandra-allApache Cassandra: unrestricted deserialization of JMX authentication credentials
5.9
First published (updated )
CVE-2025-24860: Apache Cassandra: CassandraNetworkAuthorizer and CassandraCIDRAuthorizer can be bypassed allowing access to diffent network gions
First published (updated )
CVE-2025-23015: Apache Cassandra: User with MODIFY permission on ALL KEYSPACES can escalate privileges to superuser via unsafe actions
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.