Browse CVEs
16,461 medium risk vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2016-3090 | The TextParseUtil.translateVariables method in Apache Str... | High | 8.8 | Medium Risk | Patched | 30-Oct-17 |
| CVE-2015-0226 | Apache WSS4J before 1.6.17 and 2.0.x before 2.0.2 imprope... | High | 7.5 | Medium Risk | Patched | 30-Oct-17 |
| CVE-2012-0881 | Apache Xerces2 Java Parser before 2.12.0 allows remote at... | High | 7.5 | Medium Risk | Patched | 30-Oct-17 |
| CVE-2017-16228 | Dulwich before 0.18.5, when an SSH subprocess is used, al... | Critical | 9.8 | Medium Risk | Patched | 29-Oct-17 |
| CVE-2014-3600 | XML external entity (XXE) vulnerability in Apache ActiveM... | Critical | 9.8 | Medium Risk | Patched | 27-Oct-17 |
| CVE-2014-1203 | The get_login_ip_config_file function in Eyou Mail System... | Critical | 9.8 | Medium Risk | Patched | 24-Oct-17 |
| CVE-2017-14695 | Directory traversal vulnerability in minion id validation... | Critical | 9.8 | Medium Risk | Patched | 24-Oct-17 |
| CVE-2017-12628 | The JMX server embedded in Apache James, also used by the... | High | 7.8 | Medium Risk | 20-Oct-17 | |
| CVE-2017-5636 | In Apache NiFi before 0.7.2 and 1.x before 1.1.2 in a clu... | Critical | 9.8 | Medium Risk | Patched | 19-Oct-17 |
| CVE-2017-5635 | In Apache NiFi before 0.7.2 and 1.x before 1.1.2 in a clu... | High | 7.5 | Medium Risk | Patched | 19-Oct-17 |