VYPR

Vendor CVEs

Apache

All CVEs

2,543 total · sorted by risk
  • CVE-2017-10934CriJul 25, 2018
    risk 0.64cvss 9.8epss 0.03

    All versions prior to V5.09.02.02T4 of the ZTE ZXIPTV-EPG product use the Java RMI service in which the servers use the Apache Commons Collections (ACC) library that may result in Java deserialization vulnerabilities. An unauthenticated remote attacker can exploit the…

  • CVE-2018-1290CriApr 20, 2018
    risk 0.64cvss 9.8epss 0.03

    In Apache Fineract versions 1.0.0, 0.6.0-incubating, 0.5.0-incubating, 0.4.0-incubating, Using a single quotation escape with two continuous SQL parameters can cause a SQL injection. This could be done in Methods like retrieveAuditEntries of AuditsApiResource Class and…

  • CVE-2016-6813CriFeb 6, 2018
    risk 0.64cvss 9.8epss 0.06

    Apache CloudStack 4.1 to 4.8.1.0 and 4.9.0.0 contain an API call designed to allow a user to register for the developer API. If a malicious user is able to determine the ID of another (non-"root") CloudStack user, the malicious user may be able to reset the API keys for the…

  • CVE-2017-15697CriJan 23, 2018
    risk 0.64cvss 9.8epss 0.05

    A malicious X-ProxyContextPath or X-Forwarded-Context header containing external resources or embedded code could cause remote code execution. The fix to properly handle these headers was applied on the Apache NiFi 1.5.0 release. Users running a prior 1.x release should upgrade…

  • CVE-2017-15714CriJan 4, 2018
    risk 0.64cvss 9.8epss 0.03

    The BIRT plugin in Apache OFBiz 16.11.01 to 16.11.03 does not escape user input property passed. This allows for code injection by passing that code through the URL. For example by appending this code "__format=%27;alert(%27xss%27)" to the URL an alert window would execute.

  • CVE-2017-15702CriDec 1, 2017
    risk 0.64cvss 9.8epss 0.06

    In Apache Qpid Broker-J 0.18 through 0.32, if the broker is configured with different authentication providers on different ports one of which is an HTTP port, then the broker can be tricked by a remote unauthenticated attacker connecting to the HTTP port into using an…

  • CVE-2017-12633CriNov 15, 2017
    risk 0.64cvss 9.8epss 0.07

    The camel-hessian component in Apache Camel 2.x before 2.19.4 and 2.20.x before 2.20.1 is vulnerable to Java object de-serialisation vulnerability. De-serializing untrusted data can lead to security flaws.

  • CVE-2012-4449CriOct 30, 2017
    risk 0.64cvss 9.8epss 0.01

    Apache Hadoop before 0.23.4, 1.x before 1.0.4, and 2.x before 2.0.2 generate token passwords using a 20-bit secret when Kerberos security features are enabled, which makes it easier for context-dependent attackers to crack secret keys via a brute-force attack.

  • CVE-2015-3249CriOct 30, 2017
    risk 0.64cvss 9.8epss 0.05

    The HTTP/2 experimental feature in Apache Traffic Server 5.3.x before 5.3.1 allows remote attackers to cause a denial of service (out-of-bounds access and daemon crash) or possibly execute arbitrary code via vectors related to the (1) frame_handlers array or (2)…

  • CVE-2014-3624CriOct 30, 2017
    risk 0.64cvss 9.8epss 0.04

    Apache Traffic Server 5.1.x before 5.1.1 allows remote attackers to bypass access restrictions by leveraging failure to properly tunnel remap requests using CONNECT.

  • CVE-2012-1622CriOct 26, 2017
    risk 0.64cvss 9.8epss 0.05

    Apache OFBiz 10.04.x before 10.04.02 allows remote attackers to execute arbitrary code via unspecified vectors.

  • CVE-2017-5636CriOct 19, 2017
    risk 0.64cvss 9.8epss 0.04

    In Apache NiFi before 0.7.2 and 1.x before 1.1.2 in a cluster environment, the proxy chain serialization/deserialization is vulnerable to an injection attack where a carefully crafted username could impersonate another user and gain their permissions on a replicated request to…

  • CVE-2016-8736CriOct 12, 2017
    risk 0.64cvss 9.8epss 0.05

    Apache OpenMeetings before 3.1.2 is vulnerable to Remote Code Execution via RMI deserialization attack.

  • CVE-2017-12620CriOct 3, 2017
    risk 0.64cvss 9.8epss 0.03

    When loading models or dictionaries that contain XML it is possible to perform an XXE attack, since Apache OpenNLP is a library, this only affects applications that load models or dictionaries from untrusted sources. The versions 1.5.0 to 1.5.3, 1.6.0, 1.7.0 to 1.7.2, 1.8.0 to…

  • CVE-2017-12621CriSep 28, 2017
    risk 0.64cvss 9.8epss 0.09

    During Jelly (xml) file parsing with Apache Xerces, if a custom doctype entity is declared with a "SYSTEM" entity with a URL and that entity is used in the body of the Jelly file, during parser instantiation the parser will attempt to connect to said URL. This could lead to XML…

  • CVE-2015-5206CriSep 13, 2017
    risk 0.64cvss 9.8epss 0.02

    Unspecified vulnerability in the HTTP/2 experimental feature in Apache Traffic Server before 5.3.x before 5.3.2 has unknown impact and attack vectors, a different vulnerability than CVE-2015-5168.

  • CVE-2015-5168CriSep 13, 2017
    risk 0.64cvss 9.8epss 0.02

    Unspecified vulnerability in the HTTP/2 experimental feature in Apache Traffic Server 5.3.x before 5.3.2 has unknown impact and attack vectors, a different vulnerability than CVE-2015-5206.

  • CVE-2016-3086CriSep 5, 2017
    risk 0.64cvss 9.8epss 0.04

    The YARN NodeManager in Apache Hadoop 2.6.x before 2.6.5 and 2.7.x before 2.7.3 can leak the password for credential store provider used by the NodeManager to YARN Applications.

  • CVE-2016-4460CriAug 22, 2017
    risk 0.64cvss 9.8epss 0.06

    Apache Pony Mail 0.6c through 0.8b allows remote attackers to bypass authentication.

  • CVE-2012-0803CriAug 8, 2017
    risk 0.64cvss 9.8epss 0.04

    The WS-SP UsernameToken policy in Apache CXF 2.4.5 and 2.5.1 allows remote attackers to bypass authentication by sending an empty UsernameToken as part of a SOAP request.

  • CVE-2017-7673CriJul 17, 2017
    risk 0.64cvss 9.8epss 0.02

    Apache OpenMeetings 1.0.0 uses not very strong cryptographic storage, captcha is not used in registration and forget password dialogs and auth forms missing brute force protection.

  • CVE-2017-9788CriJul 13, 2017
    risk 0.64cvss 9.1epss 0.57

    In Apache httpd before 2.2.34 and 2.4.x before 2.4.27, the value placeholder in [Proxy-]Authorization headers of type 'Digest' was not initialized or reset before or between successive key=value assignments by mod_auth_digest. Providing an initial key with no '=' assignment…

  • CVE-2017-5640CriJul 10, 2017
    risk 0.64cvss 9.8epss 0.03

    It was noticed that a malicious process impersonating an Impala daemon in Apache Impala (incubating) 2.7.0 to 2.8.0 could cause Impala daemons to skip authentication checks when Kerberos is enabled (but TLS is not). If the malicious server responds with 'COMPLETE' before the…

  • CVE-2017-7676CriJun 14, 2017
    risk 0.64cvss 9.8epss 0.04

    Policy resource matcher in Apache Ranger before 0.7.1 ignores characters after '*' wildcard character - like my*test, test*.txt. This can result in unintended behavior.

  • CVE-2016-0779CriApr 11, 2017
    risk 0.64cvss 9.8epss 0.10

    The EjbObjectInputStream class in Apache TomEE before 1.7.4 and 7.x before 7.0.0-M3 allows remote attackers to execute arbitrary code via a crafted serialized object.

  • CVE-2017-5642CriApr 3, 2017
    risk 0.64cvss 9.8epss 0.02

    During installation of Ambari 2.4.0 through 2.4.2, Ambari Server artifacts are not created with proper ACLs.

  • CVE-2014-3582CriMar 29, 2017
    risk 0.64cvss 9.8epss 0.02

    In Ambari 1.2.0 through 2.2.2, it may be possible to execute arbitrary system commands on the Ambari Server host while generating SSL certificates for hosts in an Ambari cluster.

  • CVE-2016-6807CriMar 28, 2017
    risk 0.64cvss 9.8epss 0.02

    Custom commands may be executed on Ambari Agent (2.4.x, before 2.4.2) hosts without authorization, leading to unauthorized access to operations that may affect the underlying system. Such operations are invoked by the Ambari Agent process on Ambari Agent hosts, as the user…

  • CVE-2016-5019CriOct 3, 2016
    risk 0.64cvss 9.8epss 0.08

    CoreResponseStateManager in Apache MyFaces Trinidad 1.0.0 through 1.0.13, 1.2.x before 1.2.15, 2.0.x before 2.0.2, and 2.1.x before 2.1.2 might allow attackers to conduct deserialization attacks via a crafted serialized view state string.

  • CVE-2016-0733CriApr 12, 2016
    risk 0.64cvss 9.8epss 0.03

    The Admin UI in Apache Ranger before 0.5.1 does not properly handle authentication requests that lack a password, which allows remote attackers to bypass authentication by leveraging knowledge of a valid username.

  • CVE-2016-0710HigApr 11, 2016
    risk 0.64cvss 8.8epss 0.52

    Multiple SQL injection vulnerabilities in the User Manager service in Apache Jetspeed before 2.3.1 allow remote attackers to execute arbitrary SQL commands via the (1) role or (2) user parameter to services/usermanager/users/.

  • CVE-2016-0729CriApr 7, 2016
    risk 0.64cvss 9.8epss 0.09

    Multiple buffer overflows in (1) internal/XMLReader.cpp, (2) util/XMLURL.cpp, and (3) util/XMLUri.cpp in the XML Parser library in Apache Xerces-C before 3.1.3 allow remote attackers to cause a denial of service (segmentation fault or memory corruption) or possibly execute…

  • CVE-2015-3252CriFeb 8, 2016
    risk 0.64cvss 9.8epss 0.02

    Apache CloudStack before 4.5.2 does not properly preserve VNC passwords when migrating KVM virtual machines, which allows remote attackers to gain access by connecting to the VNC server.

  • CVE-2010-2076CriAug 19, 2010
    risk 0.64cvss 9.8epss 0.10

    Apache CXF 2.0.x before 2.0.13, 2.1.x before 2.1.10, and 2.2.x before 2.2.9, as used in Apache ServiceMix, Apache Camel, Apache Chemistry, Apache jUDDI, Apache Geronimo, and other products, does not properly reject DTDs in SOAP messages, which allows remote attackers to read…

  • CVE-2018-1335HigApr 25, 2018
    risk 0.63cvss 8.1epss 0.94

    From Apache Tika versions 1.7 to 1.17, clients could send carefully crafted headers to tika-server that could be used to inject commands into the command line of the server running tika-server. This vulnerability only affects those running tika-server on a server that is open to…

  • CVE-2016-3081HigApr 26, 2016
    risk 0.63cvss 8.1epss 0.94

    Apache Struts 2.3.19 to 2.3.20.2, 2.3.21 to 2.3.24.1, and 2.3.25 to 2.3.28, when Dynamic Method Invocation is enabled, allow remote attackers to execute arbitrary code via method: prefix, related to chained expressions.

  • CVE-2026-47430CriJun 8, 2026
    risk 0.62cvss epss 0.01

    ## Summary The iOS implementation of `cordova-plugin-inappbrowser` passes the `id` field from a `WKScriptMessage` body to `commandDelegate sendPluginResult:callbackId:` with no format validation (`CDVWKInAppBrowser.m:560–574`). Any web content loaded inside the InAppBrowser…

  • CVE-2016-4469HigJul 28, 2016
    risk 0.61cvss 8.8epss 0.08

    Multiple cross-site request forgery (CSRF) vulnerabilities in Apache Archiva 1.3.9 and earlier allow remote attackers to hijack the authentication of administrators for requests that (1) add new repository proxy connectors via the token parameter to…

  • CVE-2015-7611HigJun 7, 2016
    risk 0.61cvss 8.1epss 0.69

    Apache James Server 2.3.2, when configured with file-based user repositories, allows attackers to execute arbitrary system commands via unspecified vectors.

  • CVE-2026-23918HigMay 4, 2026
    risk 0.60cvss 8.8epss 0.43

    Double Free and possible RCE vulnerability in Apache HTTP Server with the HTTP/2 protocol. This issue affects Apache HTTP Server: 2.4.66. Users are recommended to upgrade to version 2.4.67, which fixes the issue.

  • CVE-2018-1282CriApr 5, 2018
    risk 0.60cvss 9.1epss 0.06

    This vulnerability in Apache Hive JDBC driver 0.7.1 to 2.3.2 allows carefully crafted arguments to be used to bypass the argument escaping/cleanup that JDBC driver does in PreparedStatement implementation.

  • CVE-2017-15715HigMar 26, 2018
    risk 0.60cvss 8.1epss 0.86

    In Apache httpd 2.4.0 to 2.4.29, the expression specified in could match '$' to a newline character in a malicious filename, rather than matching only the end of the filename. This could be exploited in environments where uploads of some files are are externally…

  • CVE-2016-6793CriJul 17, 2017
    risk 0.60cvss 9.1epss 0.08

    The DiskFileItem class in Apache Wicket 6.x before 6.25.0 and 1.5.x before 1.5.17 allows remote attackers to cause a denial of service (infinite loop) and write to, move, and delete files with the permissions of DiskFileItem, and if running on a Java VM before 1.3.1, execute…

  • CVE-2015-1832CriOct 3, 2016
    risk 0.60cvss 9.1epss 0.12

    XML external entity (XXE) vulnerability in the SqlXmlUtil code in Apache Derby before 10.12.1.1, when a Java Security Manager is not in place, allows context-dependent attackers to read arbitrary files or cause a denial of service (resource consumption) via vectors involving…

  • CVE-2015-5259HigJan 8, 2016
    risk 0.60cvss 8.6epss 0.57

    Integer overflow in the read_string function in libsvn_ra_svn/marshal.c in Apache Subversion 1.9.x before 1.9.3 allows remote attackers to execute arbitrary code via an svn:// protocol string, which triggers a heap-based buffer overflow and an out-of-bounds read.

  • CVE-2015-5254CriJan 8, 2016
    risk 0.60cvss 9.8epss 0.38

    Apache ActiveMQ 5.x before 5.13.0 does not restrict the classes that can be serialized in the broker, which allows remote attackers to execute arbitrary code via a crafted serialized Java Message Service (JMS) ObjectMessage object.

  • CVE-2026-50627CriJun 12, 2026
    risk 0.59cvss 9.1epss 0.00

    The JwtAccessTokenValidator class in Apache CXF fails to validate the 'aud' (Audience) claims of incoming JWT access tokens. This allows a JWT issued for one Resource Server to be successfully replayed against a completely different Resource Server, leading to Token…

  • CVE-2026-41919CriMay 19, 2026
    risk 0.59cvss 9.1epss 0.00

    Improper Neutralization of Special Elements used in an LDAP Query ('LDAP Injection') vulnerability in Apache OFBiz. This issue affects Apache OFBiz: before 24.09.06. Users are recommended to upgrade to version 24.09.06, which fixes the issue.

  • CVE-2026-31986CriMay 19, 2026
    risk 0.59cvss 9.1epss 0.00

    Use of Hard-coded Cryptographic Key vulnerability in Apache OFBiz. This issue affects Apache OFBiz: before 24.09.06. Users are recommended to upgrade to version 24.09.06, which fixes the issue.

  • CVE-2026-25199CriMay 8, 2026
    risk 0.59cvss 9.1epss 0.01

    Instances deployed via the Proxmox extension allow unauthorized access to instances belonging to other tenants. This issue affects Apache CloudStack: from 4.21.0.0 through 4.22.0.0. The Proxmox extension for CloudStack improperly uses a user-editable instance setting,…

Page 2 of 51