Browse CVEs
2,916 results for "Apache"
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2016-4434 | Apache Tika before 1.13 does not properly initialize the ... | High | 7.8 | Medium Risk | Patched | 30-Sep-17 |
| CVE-2017-13990 | An information leakage vulnerability in ArcSight ESM and ... | Medium | 5.3 | Low Risk | Patched | 30-Sep-17 |
| CVE-2017-9794 | When a cluster is operating in secure mode, a user with r... | Medium | 4.3 | Medium Risk | Patched | 30-Sep-17 |
| CVE-2017-9790 | When handling a libprocess message wrapped in an HTTP req... | High | 7.5 | Medium Risk | Patched | 29-Sep-17 |
| CVE-2017-7687 | When handling a decoding failure for a malformed URL path... | High | 7.5 | Medium Risk | Patched | 29-Sep-17 |
| CVE-2017-12621 | During Jelly (xml) file parsing with Apache Xerces, if a ... | Critical | 9.8 | Low Risk | Patched | 28-Sep-17 |
| CVE-2017-10932 | All versions prior to V12.17.20 of the ZTE Microwave NR80... | Critical | 9.8 | Low Risk | Patched | 28-Sep-17 |
| CVE-2015-5169 | Cross-site scripting (XSS) vulnerability in Apache Struts... | Medium | 6.1 | Low Risk | Patched | 25-Sep-17 |
| CVE-2017-12611 | In Apache Struts 2.0.0 through 2.3.33 and 2.5 through 2.5... | Critical | 9.8 | High Risk | Patched | 20-Sep-17 |
| CVE-2016-6795 | In the Convention plugin in Apache Struts 2.3.x before 2.... | Critical | 9.8 | Medium Risk | Patched | 20-Sep-17 |