Apache - CVE CyberSecurity Database News

Apr 3, 2025 Exploit Apache

CVE-2024-53868 - Request Smuggling Vulnerability Found in Apache Traffic Server Versions 9.2.-9.2.9 and 10..-10..4

Apache Traffic Server (ATS) is a high-performance web proxy cache that improves network efficiency and performance by caching frequently-accessed information at the edge of the

Apr 1, 2025 Apache

CVE-2024-56325 - Authentication Bypass Issue: A Closer Look at Exploiting and Protecting Pinot

Security vulnerabilities are often encountered in software development, and the Common Vulnerabilities and Exposures (CVE) system provides a reference for these vulnerabilities. In this post,

Apr 1, 2025 Exploit Apache

CVE-2025-30065 - Critical Vulnerability Discovered in Schema Parsing of parquet-avro Module in Apache Parquet

A new critical vulnerability, CVE-2025-30065, has been discovered in the schema parsing of the parquet-avro module of Apache Parquet, which affects version 1.15. and

Mar 23, 2025 API Java Apache

CVE-2025-27553 - Relative Path Traversal Vulnerability in Apache Commons VFS Before 2.10.

A relative path traversal vulnerability (CVE-2025-27553) has been discovered in Apache Commons VFS (Virtual File System) library versions before 2.10.. This vulnerability allows an

Mar 19, 2025 SQL Apache

CVE-2025-27018 - Apache Airflow MySQL Provider SQL Injection Vulnerability Fixed in v6.2.

A recently discovered vulnerability in the Apache Airflow MySQL Provider (versions before 6.2.) allows an attacker to perform SQL injection attacks on the system.