| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2022-22931 | Path traversal in Apache James 3.6.1 | Apache Software Foundation | Apache James | 中危 | - | 2022-02-07 18:50:10 | Deep Dive |
| CVE-2022-23206 | Server-Side Request Forgery in Traffic Ops endpoint POST /user/login/oauth | Apache Software Foundation | Apache Traffic Control | 高危 | - | 2022-02-06 15:15:10 | Deep Dive |
| CVE-2022-23913 | Apache ActiveMQ Artemis DoS | Apache Software Foundation | Apache ActiveMQ Artemis | 高危 | - | 2022-02-04 22:33:01 | Deep Dive |
| CVE-2021-36152 | Insecure TrustManager used in LDAP connections | Apache Software Foundation | Apache Gobblin | 超危 | - | 2022-02-04 22:32:57 | Deep Dive |
| CVE-2021-36151 | Local Credentials Disclosure Vulnerability | Apache Software Foundation | Apache Gobblin | 中危 | - | 2022-02-04 22:32:56 | Deep Dive |
| CVE-2022-22939 | Vmware VMware Cloud Foundation 日志信息泄露漏洞 | - | VMware Cloud Foundation | 中危 | - | 2022-02-04 22:29:14 | Deep Dive |
| CVE-2021-44451 | API sensitive information leak | Apache Software Foundation | Apache Superset | 中危 | - | 2022-02-01 13:16:32 | Deep Dive |
| CVE-2021-41571 | Pulsar Admin API allows access to data from other tenants using getMessageById API | Apache Software Foundation | Apache Pulsar | 中危 | - | 2022-02-01 12:40:53 | Deep Dive |
| CVE-2022-23181 | Local privilege escalation with FileStore | Apache Software Foundation | Apache Tomcat | 高危 | - | 2022-01-27 00:00:00 | Deep Dive |
| CVE-2022-22932 | Path traversal flaws | Apache Software Foundation | Apache Karaf | 中危 | - | 2022-01-26 11:10:12 | Deep Dive |
| CVE-2021-41766 | Insecure Java Deserialization in Apache Karaf | Apache Software Foundation | Apache Karaf | 高危 | - | 2022-01-26 11:10:11 | Deep Dive |
| CVE-2022-23945 | Apache ShenYu missing authentication allows gateway registration | Apache Software Foundation | Apache ShenYu (incubating) | 高危 | - | 2022-01-25 13:00:25 | Deep Dive |
| CVE-2022-23944 | Apache ShenYu 2.4.1 Improper access control | Apache Software Foundation | Apache ShenYu (incubating) | 超危 | - | 2022-01-25 13:00:24 | Deep Dive |
| CVE-2022-23223 | Apache ShenYu Password leakage | Apache Software Foundation | Apache ShenYu (incubating) | 高危 | - | 2022-01-25 13:00:22 | Deep Dive |
| CVE-2021-45029 | Apache ShenYu 2.4.1 Groovy Code Injection & SpEL Injection | Apache Software Foundation | Apache ShenYu (incubating) | 超危 | - | 2022-01-25 13:00:21 | Deep Dive |
| CVE-2022-23437 | Infinite loop within Apache XercesJ xml parser | Apache Software Foundation | Apache Xerces | 中危 | - | 2022-01-24 00:00:00 | Deep Dive |
| CVE-2022-22733 | Access-Token in ElasticJob UI causes password disclosure | Apache Software Foundation | Apache ShardingSphere ElasticJob-UI | 中危 | - | 2022-01-20 10:25:12 | Deep Dive |
| CVE-2021-45230 | Apache Airflow: Creating DagRuns didn't respect Dag-level permissions in the Webserver | Apache Software Foundation | Apache Airflow | 中危 | - | 2022-01-20 10:25:10 | Deep Dive |
| CVE-2022-23307 | A deserialization flaw in the Chainsaw component of Log4j 1 can lead to malicious code execution. | Apache Software Foundation | Apache Log4j 1.x | 高危 | - | 2022-01-18 15:25:23 | Deep Dive |
| CVE-2022-23305 | SQL injection in JDBC Appender in Apache Log4j V1 | Apache Software Foundation | Apache Log4j 1.x | 超危 | - | 2022-01-18 15:25:22 | Deep Dive |