| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2022-27166 | XSS vulnerability on XHRHtml2Markup.jsp in JSPWiki 2.11.2 | Apache Software Foundation | Apache JSPWiki | 中危 | - | 2022-08-04 06:15:17 | Deep Dive |
| CVE-2022-36364 | Apache Calcite Avatica JDBC driver `httpclient_impl` connection property can be used as an RCE vector | Apache Software Foundation | Apache Calcite Avatica | 高危 | - | 2022-07-28 08:35:10 | Deep Dive |
| CVE-2022-24294 | ReDoS in Apache MXNet RTC Module | Apache Software Foundation | Apache MXNet | 高危 | - | 2022-07-24 17:45:12 | Deep Dive |
| CVE-2022-34169 | Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets | Apache Software Foundation | Apache Xalan-J | 高危 | - | 2022-07-19 00:00:00 | Deep Dive |
| CVE-2022-35741 | Apache CloudStack SAML Single Sign-On XXE | Apache Software Foundation | Apache CloudStack | 超危 | - | 2022-07-18 14:30:14 | Deep Dive |
| CVE-2022-36127 | Service unavailability impact in NodeJS agent(version <= 0.5.0) | Apache Software Foundation | Apache SkyWalking NodeJS Agent | 高危 | - | 2022-07-18 11:30:13 | Deep Dive |
| CVE-2022-33891 | Apache Spark shell command injection vulnerability via Spark UI | Apache Software Foundation | Apache Spark | 高危 | - | 2022-07-18 00:00:00 | Deep Dive |
| CVE-2021-34538 | Apache Hive Security vulnerability in Hive with UDFs | Apache Software Foundation | Apache Hive | 高危 | - | 2022-07-16 07:10:09 | Deep Dive |
| CVE-2022-31781 | Regular Expression Denial of Service (ReDoS) in ContentType.java. (GHSL-2022-022) | Apache Software Foundation | Apache Tapestry | 高危 | - | 2022-07-13 07:25:10 | Deep Dive |
| CVE-2022-28889 | Clickjacking in the web console | Apache Software Foundation | Apache Druid | 中危 | - | 2022-07-07 18:35:22 | Deep Dive |
| CVE-2021-44791 | Reflected XSS on certain HTTP endpoints | Apache Software Foundation | Apache Druid | 中危 | - | 2022-07-07 18:35:16 | Deep Dive |
| CVE-2021-37839 | Improper access to dataset metadata information | Apache Software Foundation | Apache Superset | 中危 | - | 2022-07-06 12:35:10 | Deep Dive |
| CVE-2022-32533 | Apache Portals Jetspeed XSS, CSRF, SSRF, and XXE issues | Apache Software Foundation | Apache Portals | 超危 | - | 2022-07-06 09:40:12 | Deep Dive |
| CVE-2022-33980 | Apache Commons Configuration insecure interpolation defaults | Apache Software Foundation | Apache Commons Configuration | 超危 | - | 2022-07-06 00:00:00 | Deep Dive |
| CVE-2022-32532 | Authentication Bypass Vulnerability | Apache Software Foundation | Apache Shiro | 超危 | - | 2022-06-28 23:20:11 | Deep Dive |
| CVE-2022-33879 | Incomplete fix and new regex DoS in StandardsExtractingContentHandler | Apache Software Foundation | Apache Tika | 低危 | - | 2022-06-27 21:40:10 | Deep Dive |
| CVE-2022-26477 | Denial of service in readExternal method | Apache Software Foundation | Apache SystemDS | 高危 | - | 2022-06-27 17:15:18 | Deep Dive |
| CVE-2022-34305 | XSS in examples web application | Apache Software Foundation | Apache Tomcat | 中危 | - | 2022-06-23 10:30:16 | Deep Dive |
| CVE-2022-32549 | log injection in Sling logging | Apache Software Foundation | Apache Sling | 中危 | - | 2022-06-22 14:25:10 | Deep Dive |
| CVE-2022-33140 | Improper Neutralization of Command Elements in Shell User Group Provider | Apache Software Foundation | Apache NiFi | 高危 | - | 2022-06-15 14:25:15 | Deep Dive |