| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2021-36161 | Unprotected input value toString cause RCE | Apache Software Foundation | Apache Dubbo | 超危 | - | 2021-09-09 07:45:11 | Deep Dive |
| CVE-2021-36163 | Unsafe deserialization in providers using the Hessian protocol | Apache Software Foundation | Apache Dubbo | 超危 | - | 2021-09-07 09:25:11 | Deep Dive |
| CVE-2021-36162 | Unprotected yaml deserialization cause RCE | Apache Software Foundation | Apache Dubbo | 高危 | - | 2021-09-07 09:25:10 | Deep Dive |
| CVE-2019-10095 | bash command injection in spark interpreter | Apache Software Foundation | Apache Zeppelin | 超危 | - | 2021-09-02 00:00:00 | Deep Dive |
| CVE-2020-13929 | Notebook permissions bypass | Apache Software Foundation | Apache Zeppelin | 高危 | - | 2021-09-02 00:00:00 | Deep Dive |
| CVE-2021-27578 | Cross Site Scripting in markdown interpreter | Apache Software Foundation | Apache Zeppelin | 中危 | - | 2021-09-02 00:00:00 | Deep Dive |
| CVE-2021-25958 | Generation of Error Message Containing Sensitive Information in Apache OFBiz | apache | ofbiz-framework | Medium | 6.5 | 2021-08-30 14:07:00 | Deep Dive |
| CVE-2021-33191 | MiNiFi CPP arbitrary script execution is possible on the agent's host machine through the c2 protocol | Apache Software Foundation | Apache NiFi - MiNiFi C++ | 超危 | - | 2021-08-24 11:20:09 | Deep Dive |
| CVE-2021-35940 | Regression of CVE-2017-12613 | Apache Software Foundation | Apache Portable Runtime (APR) | 高危 | - | 2021-08-23 10:00:10 | Deep Dive |
| CVE-2021-37608 | Arbitrary file upload vulnerability in OFBiz | Apache Software Foundation | Apache OFBiz | 超危 | - | 2021-08-18 07:50:12 | Deep Dive |
| CVE-2021-33580 | regex injection leading to DoS | Apache Software Foundation | Apache Roller | 高危 | - | 2021-08-18 07:50:10 | Deep Dive |
| CVE-2021-35936 | No Authentication on Logging Server | Apache Software Foundation | Apache Airflow | 中危 | - | 2021-08-16 07:25:11 | Deep Dive |
| CVE-2021-33193 | Request splitting via HTTP/2 method injection and mod_proxy | Apache Software Foundation | Apache HTTP Server | 高危 | - | 2021-08-16 00:00:00 | Deep Dive |
| CVE-2021-21501 | ServiceComb ServiceCenter Directory Traversal | Apache Software Foundation | Apache ServiceComb | 高危 | - | 2021-08-10 09:20:09 | Deep Dive |
| CVE-2021-37578 | Remote code execution via RMI | Apache Software Foundation | Apache jUDDI | 超危 | - | 2021-07-29 07:05:10 | Deep Dive |
| CVE-2021-33900 | StartTLS and SASL confidentiality protection bypass | Apache Software Foundation | Apache Directory Studio | 高危 | - | 2021-07-26 07:05:10 | Deep Dive |
| CVE-2021-28131 | Impala logs contain secrets | Apache Software Foundation | Apache Impala | 高危 | - | 2021-07-22 10:05:13 | Deep Dive |
| CVE-2021-36374 | Apache Ant ZIP, and ZIP based, archive denial of service vulerability | Apache Software Foundation | Apache Ant | 中危 | - | 2021-07-14 06:20:12 | Deep Dive |
| CVE-2021-36373 | Apache Ant TAR archive denial of service vulnerability | Apache Software Foundation | Apache Ant | 中危 | - | 2021-07-14 06:20:11 | Deep Dive |
| CVE-2021-36090 | Apache Commons Compress 1.0 to 1.20 denial of service vulnerability | Apache Software Foundation | Apache Commons Compress | 高危 | - | 2021-07-13 07:15:23 | Deep Dive |