| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2021-26558 | Deserialization of Untrusted Data | Apache Software Foundation | Apache ShardingSphere-UI | 高危 | - | 2021-11-11 09:35:09 | Deep Dive |
| CVE-2021-43082 | heap-buffer-overflow with stats-over-http plugin | Apache Software Foundation | Apache Traffic Server | 超危 | - | 2021-11-03 15:20:27 | Deep Dive |
| CVE-2021-41585 | ATS stops accepting connections on FreeBSD | Apache Software Foundation | Apache Traffic Server | 高危 | - | 2021-11-03 15:20:25 | Deep Dive |
| CVE-2021-38161 | Not validating origin TLS certificate | Apache Software Foundation | Apache Traffic Server | 高危 | - | 2021-11-03 15:20:24 | Deep Dive |
| CVE-2021-37149 | Request Smuggling - multiple attacks | Apache Software Foundation | Apache Traffic Server | 高危 | - | 2021-11-03 15:20:22 | Deep Dive |
| CVE-2021-37148 | Request Smuggling - transfer encoding validation | Apache Software Foundation | Apache Traffic Server | 高危 | - | 2021-11-03 15:20:20 | Deep Dive |
| CVE-2021-37147 | Request Smuggling - LF line ending | Apache Software Foundation | Apache Traffic Server | 高危 | - | 2021-11-03 15:20:19 | Deep Dive |
| CVE-2021-27644 | DolphinScheduler mysql jdbc connector parameters deserialize remote code execution | Apache Software Foundation | Apache DolphinScheduler | 高危 | - | 2021-11-01 09:15:10 | Deep Dive |
| CVE-2021-41973 | Apache MINA HTTP listener DOS | Apache Software Foundation | Apache MINA | 中危 | - | 2021-11-01 08:35:09 | Deep Dive |
| CVE-2021-40865 | Unsafe Pre-Authentication Deserialization In Workers | Apache Software Foundation | Apache Storm | 超危 | - | 2021-10-25 12:22:37 | Deep Dive |
| CVE-2021-38294 | Shell Command Injection Vulnerability in Nimbus Thrift Server | Apache Software Foundation | Apache Storm | 超危 | - | 2021-10-25 12:22:36 | Deep Dive |
| CVE-2021-41971 | Possible SQL Injection when template processing is enabled | Apache Software Foundation | Apache Superset | 高危 | - | 2021-10-18 14:30:14 | Deep Dive |
| CVE-2021-32609 | XSS vulnerability on Explore page | Apache Software Foundation | Apache Superset | 中危 | - | 2021-10-18 14:30:12 | Deep Dive |
| CVE-2021-42340 | DoS via memory leak with WebSocket connections | Apache Software Foundation | Apache Tomcat | 高危 | - | 2021-10-14 19:55:14 | Deep Dive |
| CVE-2021-38295 | Privilege escalation vulnerability when using HTML attachments | Apache Software Foundation | Apache CouchDB | 高危 | - | 2021-10-14 19:55:12 | Deep Dive |
| CVE-2021-42009 | Apache Traffic Control Traffic Ops Email Injection Vulnerability | Apache Software Foundation | Apache Traffic Control | 中危 | - | 2021-10-12 07:40:11 | Deep Dive |
| CVE-2021-41832 | Content Manipulation with Certificate Validation Attack | Apache Software Foundation | Apache OpenOffice | 高危 | - | 2021-10-11 08:10:15 | Deep Dive |
| CVE-2021-41831 | Timestamp Manipulation with Signature Wrapping | Apache Software Foundation | Apache OpenOffice | 中危 | - | 2021-10-11 08:10:14 | Deep Dive |
| CVE-2021-41830 | Double Certificate Attack | Apache Software Foundation | Apache OpenOffice | 高危 | - | 2021-10-11 08:10:12 | Deep Dive |
| CVE-2021-42013 | Path Traversal and Remote Code Execution in Apache HTTP Server 2.4.49 and 2.4.50 (incomplete fix of CVE-2021-41773) | Apache Software Foundation | Apache HTTP Server | 超危 | - | 2021-10-07 15:50:14 | Deep Dive |