| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2020-1926 | Timing attack in Cookie signature verification | Apache Software Foundation | Apache Hive | 中危 | - | 2021-03-16 13:00:16 | Deep Dive |
| CVE-2021-27576 | Apache OpenMeetings: bandwidth can be overloaded with public web service | Apache Software Foundation | Apache OpenMeetings | 高危 | - | 2021-03-15 09:05:17 | Deep Dive |
| CVE-2020-13936 | Velocity Sandbox Bypass | Apache Software Foundation | Apache Velocity Engine | 高危 | - | 2021-03-10 08:00:19 | Deep Dive |
| CVE-2020-13959 | Velocity Tools XSS Vulnerability | Apache Software Foundation | Apache Velocity Tools | 中危 | - | 2021-03-10 08:00:19 | Deep Dive |
| CVE-2020-35451 | Oozie local privilege escalation | Apache Software Foundation | Apache Oozie | 中危 | - | 2021-03-09 15:20:13 | Deep Dive |
| CVE-2021-27907 | Apache Superset stored XSS on Dashboard markdown | Apache Software Foundation | Apache Superset | 中危 | - | 2021-03-05 11:35:15 | Deep Dive |
| CVE-2020-1936 | Stored XSS in Apache Ambari | Apache Software Foundation | Apache Ambari | 中危 | - | 2021-03-02 09:00:22 | Deep Dive |
| CVE-2020-9479 | unzip directory traversal | Apache Software Foundation | Apache AsterixDB | 中危 | - | 2021-03-01 15:55:12 | Deep Dive |
| CVE-2021-25122 | Apache Tomcat h2c request mix-up | Apache Software Foundation | Apache Tomcat | 高危 | - | 2021-03-01 12:00:20 | Deep Dive |
| CVE-2021-25329 | Incomplete fix for CVE-2020-9484 | Apache Software Foundation | Apache Tomcat | 高危 | - | 2021-03-01 12:00:20 | Deep Dive |
| CVE-2020-11988 | Apache XmlGraphics Commons 代码问题漏洞 | - | Apache XmlGraphics Commons | 高危 | - | 2021-02-24 17:05:39 | Deep Dive |
| CVE-2020-11987 | Apache Batik 代码问题漏洞 | - | Apache Batik | 高危 | - | 2021-02-24 00:00:00 | Deep Dive |
| CVE-2021-26544 | Apache Livy (Incubating) is vulnerable to cross site scripting | Apache Software Foundation | Apache Livy (Incubating) | 中危 | - | 2021-02-20 09:00:15 | Deep Dive |
| CVE-2021-26296 | Cross-Site Request Forgery (CSRF) vulnerability in Apache MyFaces | Apache Software Foundation | Apache MyFaces Core | 高危 | - | 2021-02-19 08:30:14 | Deep Dive |
| CVE-2021-26697 | Apache Airflow: Lineage API endpoint for Experimental API missed authentication check | Apache Software Foundation | Apache Airflow | 中危 | - | 2021-02-17 14:15:15 | Deep Dive |
| CVE-2021-26559 | CWE-284 Improper Access Control on Configurations Endpoint for the Stable API | Apache Software Foundation | Apache Airflow | 中危 | - | 2021-02-17 14:15:14 | Deep Dive |
| CVE-2020-13949 | Apache Thrift 资源管理错误漏洞 | - | Apache Thrift | 高危 | - | 2021-02-12 19:39:09 | Deep Dive |
| CVE-2020-13947 | Apache ActiveMQ 跨站脚本漏洞 | - | Apache ActiveMQ | 中危 | - | 2021-02-08 21:25:27 | Deep Dive |
| CVE-2020-17523 | Apache Shiro 授权问题漏洞 | - | Apache Shiro | 超危 | - | 2021-02-03 16:55:18 | Deep Dive |
| CVE-2020-17516 | Apache Cassandra 安全漏洞 | - | Apache Cassandra | 高危 | - | 2021-02-03 16:40:04 | Deep Dive |