Apache Spark Standalone Master, Mesos REST APIs Unauthorized Access Vulnerability [CVE-2018-11770]
CVE Number – CVE-2018-11770 A vulnerability in Apache Spark running standalone master with the REST API enabled, or running Mesos
Read MoreApache
Apache is a free, open-source web server software.
It delivers websites and web pages to users over the Internet.
It runs on many operating systems and supports various web technologies.
Apache Ant Arbitrary File Overwrite Vulnerability [CVE-2018-10886]
CVE number –Â CVE-2018-10886 A vulnerability in Apache Ant could allow an unauthenticated, remote attacker to create or overwrite arbitrary files
Read MoreApache PDFBox AFMParser Out of Memory Exception Vulnerability [CVE-2018-8036]
CVE Number –Â Â CVE-2018-8036 A vulnerability in the AFMParser component of the Apache PDFBox library could allow an unauthenticated, remote attacker
Read MoreApache XML-RPC Library Data Deserialization Arbitrary Code Execution Vulnerability [CVE-2016-5003]
CVE number – CVE-2016-5003 A vulnerability in the Apache XML-RPC library could allow an unauthenticated, remote attacker to execute arbitrary
Read MoreApache Derby Externally Controlled Input Vulnerability [CVE-2018-1313]
A vulnerability in the Network Server component of Apache Derby could allow an unauthenticated, remote attacker to gain unauthorized access
Read MoreApache Hive xpath UDFs Information Disclosure Vulnerability [CVE-2018-1284]
A vulnerability in multiple xpath user-defined functions (UDFs) used by Apache Hive could allow an unauthenticated, remote attacker to access
Read MoreApache Hive Java Database Connectivity Driver Bypass Vulnerability [CVE-2018-1282]
A vulnerability in the Java Database Connectivity (JDBC) driver used by Apache Hive could allow an unauthenticated, remote attacker to
Read MoreApache HTTP Server HTTP Request Reading Out-of-Bounds Access Denial of Service Vulnerability [CVE-2018-1301]
A vulnerability in Apache HTTP Server could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition
Read MoreApache Portable Runtime Library apr_time_exp_get() Out-of-Bounds Array Dereference Vulnerability
CVE Number – CVE-2017-12613 A vulnerability in Apache Portable Runtime Library could allow an unauthenticated, remote attacker to gain access
Read MoreApache Struts 2 Remote Code Execution Vulnerability Affecting Multiple Cisco Products
On September 7, 2017, the Apache Software Foundation released a security bulletin that disclosed a vulnerability in the Freemarker tag
Read More