| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2022-45470 | Apache Hama allows XSS and information disclosure | Apache Software Foundation | Apache Hama | 高危 | - | 2022-11-21 00:00:00 | Deep Dive |
| CVE-2022-45047📌 | Apache MINA SSHD: Java unsafe deserialization vulnerability | Apache Software Foundation | Apache MINA SSHD | 超危 | - | 2022-11-16 00:00:00 | Deep Dive |
| CVE-2022-40308 | Apache Archiva prior to 2.2.9 may allow the anonymous user to read arbitrary files | Apache Software Foundation | Apache Archiva | 高危 | - | 2022-11-15 00:00:00 | Deep Dive |
| CVE-2022-40309 | Apache Archiva prior to 2.2.9 allows an authenticated user to delete arbitrary directories | Apache Software Foundation | Apache Archiva | 中危 | - | 2022-11-15 00:00:00 | Deep Dive |
| CVE-2022-45402 | Apache Airflow: Open redirect during login | Apache Software Foundation | Apache Airflow | 中危 | - | 2022-11-15 00:00:00 | Deep Dive |
| CVE-2022-0324📌 | Buffer Overflow in Dhcp6relay in Software for Open Networking in the Cloud (SONiC) | Linux Foundation | Software for Open Networking in the Cloud (SONiC) | High | 8.1 | 2022-11-14 16:08:34 | Deep Dive |
| CVE-2022-27949 | Apache Airflow prior to 2.3.1 may include sensitive values in rendered template | Apache Software Foundation | Apache Airflow | 高危 | - | 2022-11-14 00:00:00 | Deep Dive |
| CVE-2022-40127📌💣 | Apache Airflow <2.4.0 has an RCE in a bash example EPSS 0.93 | Apache Software Foundation | Apache Airflow | 高危 | - | 2022-11-14 00:00:00 | Deep Dive |
| CVE-2022-45136 | Apache Jena SDB allows arbitrary deserialisation via JDBC | Apache Software Foundation | Apache Jena SDB | 超危 | - | 2022-11-14 00:00:00 | Deep Dive |
| CVE-2022-45378 | Apache SOAP allows unauthenticated users to potentially invoke arbitrary code | Apache Software Foundation | Apache SOAP | 超危 | - | 2022-11-14 00:00:00 | Deep Dive |
| CVE-2022-41062 | Microsoft SharePoint Server Remote Code Execution Vulnerability EPSS 0.17 | Microsoft | Microsoft SharePoint Enterprise Server 2016 | High | 8.8 | 2022-11-09 00:00:00 | Deep Dive |
| CVE-2022-41122 | Microsoft SharePoint Server Spoofing Vulnerability EPSS 0.18 | Microsoft | Microsoft SharePoint Enterprise Server 2016 | Medium | 6.5 | 2022-11-09 00:00:00 | Deep Dive |
| CVE-2022-37865 | Apache Ivy allows creating/overwriting any file on the system | Apache Software Foundation | Apache Ivy | 超危 | - | 2022-11-07 00:00:00 | Deep Dive |
| CVE-2022-37866 | Apache Ivy allows path traversal in the presence of a malicious repository | Apache Software Foundation | Apache Ivy | 高危 | - | 2022-11-07 00:00:00 | Deep Dive |
| CVE-2022-42920 | Apache Commons BCEL prior to 6.6.0 allows producing arbitrary bytecode via out-of-bounds writing | Apache Software Foundation | Apache Commons BCEL | 超危 | - | 2022-11-07 00:00:00 | Deep Dive |
| CVE-2022-33684 | Apache Pulsar C++/Python OAuth Clients prior to 3.0.0 were vulnerable to an MITM attack due to Disabled Certificate Validation | Apache Software Foundation | Apache Pulsar | 高危 | - | 2022-11-04 00:00:00 | Deep Dive |
| CVE-2022-32287📌 | Apache UIMA prior to 3.3.1 has a path traversal vulnerability when extracting (PEAR) archives | Apache Software Foundation | Apache UIMA | 高危 | - | 2022-11-03 00:00:00 | Deep Dive |
| CVE-2022-43670 | XSS in Sling CMS Reference App Taxonomy Path | Apache Software Foundation | Apache Sling App CMS | 中危 | - | 2022-11-02 00:00:00 | Deep Dive |
| CVE-2022-43982 | Apache Airflow prior to 2.4.2 allows reflected XSS via Origin Query Argument in URL | Apache Software Foundation | Apache Airflow | 中危 | - | 2022-11-02 00:00:00 | Deep Dive |
| CVE-2022-43985 | Apache Airflow prior to 2.4.2 has an open redirect | Apache Software Foundation | Apache Airflow | 中危 | - | 2022-11-02 00:00:00 | Deep Dive |