Apache Software Foundation - CVE CyberSecurity Database News (Page 7)

Aug 25, 2023 Exploit Java Apache Apache Software Foundation Apache Tomcat

CVE-2023-41080 - URL Redirection to Untrusted Site ('Open Redirect') Vulnerability in Apache Tomcat FORM Authentication

The popular web server Apache Tomcat has been identified to have a URL Redirection to Untrusted Site ('Open Redirect') vulnerability (CVE-2023-41080) in its

Aug 22, 2023 Apache Apache Software Foundation Apache XML Graphics Batik

CVE-2022-44729: Mitigating the SSRF Vulnerability in Apache XML Graphics Batik 1.16

The Apache Software Foundation recently announced a significant vulnerability in Apache XML Graphics Batik, affecting version 1.16. This vulnerability is classified as CVE-2022-44729 and

Aug 21, 2023 XXE API Exploit Java Oracle Apache Apache Software Foundation Apache Ivy

CVE-2022-46751: Apache Ivy XML External Entity (XXE) and XML Injection Vulnerabilities

Apache Software Foundation has recently addressed a critical security vulnerability in Apache Ivy, identified as CVE-2022-46751. The flaw is categorized as an improper restriction of

Jul 24, 2023 Exploit Apache Apache Software Foundation Apache Shiro

CVE-2023-34478 - Apache Shiro Path Traversal Attack and Authentication Bypass Vulnerability

In this post, we will delve into the details of a recently discovered security vulnerability, CVE-2023-34478, affecting Apache Shiro. We will discuss the cause of

CVE-2023-36543 - Apache Airflow Vulnerability Allows Authenticated Users to Execute Denial of Service Attacks in Versions before 2.6.3

Jul 12, 2023 API Apache Apache Software Foundation Apache Airflow

CVE-2023-36543 - Apache Airflow Vulnerability Allows Authenticated Users to Execute Denial of Service Attacks in Versions before 2.6.3

Security researchers have recently identified a vulnerability in Apache Airflow, a popular open-source platform designed to build, schedule and monitor complex data workflows. The vulnerability,