Apache Tomcat – Denial of service vulnerability [CVE-2021-42340]

CVE number – CVE-2021-42340 The Apache Software Foundation has released a security advisory to address a vulnerability in multiple versions

Read more

Apache Releases Security Update for Apache HTTP Server 2.4 [CVE-2021-41773]

CVE number – CVE-2021-41773 A flaw was found in a change made to path normalization in Apache HTTP Server 2.4.49.

Read more

Apache OpenOffice remote code execution flaw [CVE-2021-33035]

CVE number = CVE-2021-33035 Security researcher Eugene Lim (@spaceraccoonsec) has revealed technical details about a remote code execution flaw in

Read more

Apache NuttX vulnerable to integer wrap-arounds [CVE-2021-26461]

CVE number = CVE-2021-26461 Apache Nuttx (incubating) versions prior to 10.1.0 are vulnerable to integer wrap-around in functions malloc, realloc

Read more

Apache SpamAssassin malicious rule configuration [CVE-2020-1946]

CVE number – CVE-2020-1946 Apache SpamAssassin 3.4.5 was recently released [1], and fixes an issue of security note where malicious

Read more

Apache Commons Beanutils PropertyUtilsBean Class Property Suppression Vulnerability [CVE-2019-10086]

CVE number – CVE-2019-10086 A vulnerability in Apache Commons Beanutils could allow an unauthenticated, remote attacker to perform unauthorized actions

Read more

Apache Tomcat SSI Printenv Command Cross-Site Scripting Vulnerability [CVE-2019-0221]

CVE Number – CVE-2019-0221 A vulnerability in Apache Tomcat could allow an unauthenticated, remote attacker to conduct a cross-site scripting

Read more

Apache Camel XML External Entity Injection Vulnerability [CVE-2019-0188]

CVE Number – CVE-2019-0188 A vulnerability in the camel-xmljson component of Apache Camel could allow an unauthenticated, remote attacker to

Read more

Apache Friends XAMPP Cross-Site Scripting Vulnerability [CVE-2019-8924]

CVE Number – CVE-2019-8924 A vulnerability in Apache Friends XAMPP could allow an unauthenticated, remote attacker to conduct a cross-site

Read more

Apache Karaf Config Service Arbitrary File Write Vulnerability [CVE-2019-0226]

CVE Number – CVE-2019-0226 A vulnerability in the config service of Apache Karaf could allow an authenticated, remote attacker to

Read more
%d bloggers like this: