All 3 CVE vulnerabilities found in Apache Avro Java SDK, with AI-generated Chinese analysis, references, and POCs.
Vendor: Apache Software Foundation
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-33042 | Apache Avro Java SDK: Code injection on Java generated code CWE-94 | 9.8 | - | 2026-02-13 |
| CVE-2024-47561 | Apache Avro Java SDK: Arbitrary Code Execution when reading Avro schema (Java SDK) CWE-502 | 9.8 | - | 2024-10-03 |
| CVE-2023-39410 | Apache Avro Java SDK: Memory when deserializing untrusted data in Avro Java SDK CWE-502 | 7.5 | - | 2023-09-29 |
All 3 known CVE vulnerabilities affecting Apache Avro Java SDK with full Chinese analysis, references, and POCs where available.