Browse CVEs
2,916 results for "Apache"
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2025-51991 | XWiki through version 17.3.0 is vulnerable to Server-Side... | High | 8.8 | Medium Risk | Patched | 20-Aug-25 |
| CVE-2025-54988 | Critical XXE in Apache Tika (tika-parser-pdf-module) in A... | High | 8.4 | High Risk | 20-Aug-25 | |
| CVE-2025-53192 | ** UNSUPPORTED WHEN ASSIGNED ** Improper Neutralization o... | High | 8.8 | Low Risk | 18-Aug-25 | |
| CVE-2025-54466 | Improper Control of Generation of Code ('Code Injection')... | Critical | 9.8 | Low Risk | Patched | 15-Aug-25 |
| CVE-2025-54472 | Unlimited memory allocation in redis protocol parser in A... | High | 7.5 | Low Risk | Patched | 14-Aug-25 |
| CVE-2025-55675 | Apache Superset contains an improper access control vulne... | Medium | 6.5 | Medium Risk | Patched | 14-Aug-25 |
| CVE-2025-55674 | A bypass of the DISALLOWED_SQL_FUNCTIONS security feature... | Medium | 6.5 | Medium Risk | Patched | 14-Aug-25 |
| CVE-2025-55672 | A stored Cross-Site Scripting (XSS) vulnerability exists ... | Medium | 5.4 | Medium Risk | Patched | 14-Aug-25 |
| CVE-2025-55673 | When a guest user accesses a chart in Apache Superset, th... | Medium | 4.3 | Medium Risk | Patched | 14-Aug-25 |
| CVE-2025-48989 | Improper Resource Shutdown or Release vulnerability in Ap... | High | 7.5 | Medium Risk | Patched | 13-Aug-25 |