Browse CVEs
2,919 results for "Apache"
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2017-15708 | In Apache Synapse, by default no authentication is requir... | Critical | 9.8 | Critical Gap | 11-Dec-17 | |
| CVE-2014-3250 | The default vhost configuration file in Puppet before 3.6... | Medium | 6.5 | Low Risk | Patched | 11-Dec-17 |
| CVE-2017-17671 | vBulletin through 5.3.x on Windows allows remote PHP code... | Critical | 9.8 | Low Risk | Patched | 14-Dec-17 |
| CVE-2017-5663 | In Apache Fineract 0.4.0-incubating, 0.5.0-incubating, an... | High | 8.8 | Low Risk | 14-Dec-17 | |
| CVE-2017-15700 | A flaw in the org.apache.sling.auth.core.AuthUtil#isRedir... | High | 8.8 | Medium Risk | 18-Dec-17 | |
| CVE-2017-12630 | In Apache Drill 1.11.0 and earlier when submitting form f... | Medium | 5.4 | Low Risk | 18-Dec-17 | |
| CVE-2017-5641 | Previous versions of Apache Flex BlazeDS (4.7.2 and earli... | Critical | 9.8 | Low Risk | Patched | 28-Dec-17 |
| CVE-2017-15714 | The BIRT plugin in Apache OFBiz 16.11.01 to 16.11.03 does... | Critical | 9.8 | Low Risk | 04-Jan-18 | |
| CVE-2017-17837 | The Apache DeltaSpike-JSF 1.8.0 module has a XSS injectio... | Medium | 6.1 | Medium Risk | 04-Jan-18 | |
| CVE-2012-3353 | The Apache Sling JCR ContentLoader 2.1.4 XmlReader used i... | High | 7.5 | Low Risk | Patched | 09-Jan-18 |