| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2021-29200 | RCE vulnerability in latest Apache OFBiz due to Java serialisation using RMI | Apache Software Foundation | Apache OFBiz | 超危 | - | 2021-04-27 19:50:13 | Deep Dive |
| CVE-2021-30638 | An Information Disclosure due to insufficient input validation exists in Apache Tapestry 5.4.0 and later | Apache Software Foundation | Apache Tapestry | 高危 | - | 2021-04-27 18:30:15 | Deep Dive |
| CVE-2021-28125 | Apache Superset Open Redirect | Apache Software Foundation | Apache Superset | 中危 | - | 2021-04-27 09:27:22 | Deep Dive |
| CVE-2020-17517 | Ozone S3 Gateway allows bucket and key access to non authenticated users | Apache Software Foundation | Apache Ozone | 高危 | - | 2021-04-27 08:22:22 | Deep Dive |
| CVE-2021-26291 | block repositories using http by default | Apache Software Foundation | Apache Maven | 超危 | - | 2021-04-23 14:20:13 | Deep Dive |
| CVE-2021-30245 | Code execution in Apache OpenOffice via non-http(s) schemes in Hyperlinks | Apache Software Foundation | Apache OpenOffice | 高危 | - | 2021-04-15 19:30:14 | Deep Dive |
| CVE-2021-27850 | Bypass of the fix for CVE-2019-0195 | Apache Software Foundation | Apache Tapestry | 超危 | - | 2021-04-15 07:40:11 | Deep Dive |
| CVE-2021-29425 | Possible limited path traversal vulnerabily in Apache Commons IO | Apache Software Foundation | Apache Commons IO | 中危 | - | 2021-04-13 06:50:12 | Deep Dive |
| CVE-2021-29943 | Apache Solr Unprivileged users may be able to perform unauthorized read/write to collections | Apache Software Foundation | Apache Solr | 超危 | - | 2021-04-13 06:35:22 | Deep Dive |
| CVE-2021-29262 | Misapplied Zookeeper ACLs can result in leakage of configured authentication and authorization settings | Apache Software Foundation | Apache Solr | 高危 | - | 2021-04-13 06:35:21 | Deep Dive |
| CVE-2021-27905 | SSRF vulnerability with the Replication handler | Apache Software Foundation | Apache Solr | 超危 | - | 2021-04-13 06:35:20 | Deep Dive |
| CVE-2021-22696 | OAuth 2 authorization service vulnerable to DDos attacks | Apache Software Foundation | Apache CXF | 高危 | - | 2021-04-02 10:05:14 | Deep Dive |
| CVE-2021-28657 | Infinite loop in Apache Tika's MP3 parser | Apache Software Foundation | Apache Tika | 中危 | - | 2021-03-31 07:35:14 | Deep Dive |
| CVE-2021-26919 | Apache Druid Authenticated users can execute arbitrary code from malicious MySQL database systems. | Apache Software Foundation | Apache Druid | 高危 | - | 2021-03-30 07:50:10 | Deep Dive |
| CVE-2020-1946 | Apache SpamAssassin has an OS Command Injection vulnerability | Apache Software Foundation | Apache SpamAssassin | 超危 | - | 2021-03-25 09:20:11 | Deep Dive |
| CVE-2021-26295 | RCE vulnerability in latest Apache OFBiz due to Java serialisation using RMI | Apache Software Foundation | Apache OFBiz | 超危 | - | 2021-03-22 12:00:18 | Deep Dive |
| CVE-2021-27906 | A carefully crafted PDF file can trigger an OutOfMemory-Exception while loading the file | Apache Software Foundation | Apache PDFBox | 中危 | - | 2021-03-19 16:05:21 | Deep Dive |
| CVE-2021-27807 | A carefully crafted PDF file can trigger an infinite loop while loading the file | Apache Software Foundation | Apache PDFBox | 中危 | - | 2021-03-19 16:05:20 | Deep Dive |
| CVE-2020-17525 | Remote unauthenticated denial-of-service in Subversion mod_authz_svn | Apache Software Foundation | Apache Subversion | 高危 | - | 2021-03-17 09:20:14 | Deep Dive |
| CVE-2020-13924 | Apache Ambari 路径遍历漏洞 | Apache Software Foundation | Apache Ambari | 高危 | - | 2021-03-17 09:05:19 | Deep Dive |