| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2021-40439 | Billion Laughs | Apache Software Foundation | Apache OpenOffice | 中危 | - | 2021-10-07 15:50:12 | Deep Dive |
| CVE-2021-28129 | DEB packaging for Apache OpenOffice 4.1.8 installed with a non-root userid and groupid | Apache Software Foundation | Apache OpenOffice | 高危 | - | 2021-10-07 15:50:11 | Deep Dive |
| CVE-2021-41773 | Path traversal and file disclosure vulnerability in Apache HTTP Server 2.4.49 | Apache Software Foundation | Apache HTTP Server | 高危 | - | 2021-10-05 08:40:12 | Deep Dive |
| CVE-2021-41524 | null pointer dereference in h2 fuzzing | Apache Software Foundation | Apache HTTP Server | 高危 | - | 2021-10-05 08:40:11 | Deep Dive |
| CVE-2021-41616 | Apache ddlutils 1.0 readobject vulnerability | Apache Software Foundation | Apache DB ddlutils | 超危 | - | 2021-09-30 07:55:11 | Deep Dive |
| CVE-2021-36749 | Apache Druid: The HTTP inputSource allows authenticated users to read data from other sources than intended (incomplete fix of CVE-2021-26920) | Apache Software Foundation | Apache Druid | 中危 | - | 2021-09-24 09:30:11 | Deep Dive |
| CVE-2021-33035 | Buffer overflow from a crafted DBF file | Apache Software Foundation | Apache OpenOffice | 高危 | - | 2021-09-23 08:10:10 | Deep Dive |
| CVE-2021-38153 | Timing Attack Vulnerability for Apache Kafka Connect and Clients | Apache Software Foundation | Apache Kafka | 中危 | - | 2021-09-22 09:05:11 | Deep Dive |
| CVE-2021-40690 | Bypass of the secureValidation property | Apache Software Foundation | Apache Santuario | 高危 | - | 2021-09-19 00:00:00 | Deep Dive |
| CVE-2021-41303 | Apache Shiro before 1.8.0, when using Apache Shiro with Spring Boot, a specially crafted HTTP request may cause an authentication bypass | Apache Software Foundation | Apache Shiro | 超危 | - | 2021-09-17 08:20:12 | Deep Dive |
| CVE-2021-41079 | Apache Tomcat DoS with unexpected TLS packet | Apache Software Foundation | Apache Tomcat | 高危 | - | 2021-09-16 14:40:25 | Deep Dive |
| CVE-2021-40438 | mod_proxy SSRF | Apache Software Foundation | Apache HTTP Server | 超危 | - | 2021-09-16 14:40:23 | Deep Dive |
| CVE-2021-39275 | ap_escape_quotes buffer overflow | Apache Software Foundation | Apache HTTP Server | 超危 | - | 2021-09-16 14:40:22 | Deep Dive |
| CVE-2021-39239 | XML External Entity (XXE) vulnerability | Apache Software Foundation | Apache Jena | 高危 | - | 2021-09-16 14:40:20 | Deep Dive |
| CVE-2021-36160 | mod_proxy_uwsgi out of bound read | Apache Software Foundation | Apache HTTP Server | 高危 | - | 2021-09-16 14:40:18 | Deep Dive |
| CVE-2021-34798 | NULL pointer dereference in httpd core | Apache Software Foundation | Apache HTTP Server | 高危 | - | 2021-09-16 14:40:17 | Deep Dive |
| CVE-2021-40146 | A Remote Code Execution (RCE) vulnerability exists in Apache Any23 YAMLExtractor.java | Apache Software Foundation | Apache Any23 | 超危 | - | 2021-09-11 11:05:12 | Deep Dive |
| CVE-2021-38555 | An XML external entity (XXE) injection vulnerability exists in Apache Any23 StreamUtils.java | Apache Software Foundation | Apache Any23 | 超危 | - | 2021-09-11 11:05:11 | Deep Dive |
| CVE-2021-38540 | Apache Airflow: Variable Import endpoint missed authentication check | Apache Software Foundation | Apache Airflow | 超危 | - | 2021-09-09 15:05:09 | Deep Dive |
| CVE-2021-37579 | Bypass deserialization checks in Apache Dubbo | Apache Software Foundation | Apache Dubbo | 超危 | - | 2021-09-09 07:45:12 | Deep Dive |