Lucene search
+L

148 matches found

cgr
cgr
added 2026/04/17 1:17 a.m.13 views

CVE-2026-2332 vulnerabilities

Vulnerabilities for packages: solr, apache-hop-fips, kafka-fips, apache-pulsar-fips, jenkins, apache-hop, pinot, spark-kubernetes-operator, apache-pulsar, wso2is, neo4j, druid, spark-kubernetes-operator-fips, akhq, strimzi-kafka-operator, trino, cloudwatch-exporter, strimzi-kafka-operator-fips,...

9.1CVSS6.1AI score0.01127EPSS
Exploits1
cgr
cgr
added 2026/04/17 1:17 a.m.10 views

GHSA-355H-QMC2-WPWF vulnerabilities

Vulnerabilities for packages: solr, apache-hop-fips, kafka-fips, apache-pulsar-fips, jenkins, apache-hop, pinot, spark-kubernetes-operator, apache-pulsar, wso2is, neo4j, druid, spark-kubernetes-operator-fips, akhq, strimzi-kafka-operator, trino, cloudwatch-exporter, strimzi-kafka-operator-fips,...

6.1AI score
Exploits0
cgr
cgr
added 2026/04/12 2:17 a.m.8 views

CVE-2026-34480 vulnerabilities

Vulnerabilities for packages: apache-tika-fips, solr, apache-camel-karavan-devmode, apache-hop-fips, kafka-fips, wavefront-proxy, commercial-elasticsearch, elasticsearch-fips, infinispan, apache-pulsar-fips, nuxeo, zipkin, spark, tritonserver-backend-vllm-cuda-13.0, apache-hop, pinot,...

7.5CVSS6.1AI score0.0086EPSS
Exploits0
cgr
cgr
added 2026/02/18 7:17 p.m.19 views

CVE-2026-23901 vulnerabilities

Vulnerabilities for packages: apache-jena-fuseki, neo4j...

2.5CVSS7AI score0.00219EPSS
Exploits0
cgr
cgr
added 2026/02/18 7:17 p.m.2 views

GHSA-C4QC-4Q9P-M9Q9 vulnerabilities

Vulnerabilities for packages: apache-jena-fuseki, neo4j...

6.1AI score
Exploits0
ibm
ibm
added 2025/12/01 6:25 a.m.8 views

Security Bulletin: Due to use of Apache Jena SDB, IBM Jazz Reporting Service is affected by a JDBC Deserialisation attack.

Summary Apache Jena SDB is used internally by IBM Jazz Reporting Service CVE-2022-45136. Vulnerability Details CVEID:CVE-2022-45136 DESCRIPTION: Apache Jena SDB 3.17.0 and earlier is vulnerable to a JDBC Deserialisation attack if the attacker is able to control the JDBC URL used or cause the...

9.8CVSS6.6AI score0.01525EPSS
Exploits0Affected Software1
euvd
euvd
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-2007

Malware in sbrugna...

7.5CVSS7.6AI score0.04306EPSS
Exploits0References10
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-22076

Malicious code in bioql PyPI...

7.5CVSS4.3AI score0.01401EPSS
Exploits0References4
euvd
euvd
added 2025/10/03 8:7 p.m.12 views

EUVD-2025-22072

Malicious code in bioql PyPI...

8.8CVSS6.5AI score0.00937EPSS
Exploits0References3
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-3938

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.0247EPSS
Exploits0References4
euvd
euvd
added 2025/10/03 8:7 p.m.9 views

EUVD-2023-2087

Malicious code in bioql PyPI...

8.8CVSS6.9AI score0.01473EPSS
Exploits0References5
nessus
nessus
added 2025/08/30 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2021-33192

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability in the HTML pages of Apache Jena Fuseki allows an attacker to execute arbitrary javascript on certain page views. This issue affects Apache Jena...

6.1CVSS6.7AI score0.02881EPSS
Exploits0References2
nessus
nessus
added 2025/08/27 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2022-28890

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability in the RDF/XML parser of Apache Jena allows an attacker to cause an external DTD to be retrieved. This issue affects Apache Jena version 4.4.0 a...

9.8CVSS7AI score0.0247EPSS
Exploits0References2
nessus
nessus
added 2025/08/27 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2021-39239

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability in XML processing in Apache Jena, in versions up to 4.1.0, may allow an attacker to execute XML External Entities XXE, including exposing the...

7.5CVSS7.1AI score0.04306EPSS
Exploits0References2
nessus
nessus
added 2025/08/18 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2022-45136

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Apache Jena SDB 3.17.0 and earlier is vulnerable to a JDBC Deserialisation attack if the attacker is able to control the JDBC URL used or cause the underlying...

9.8CVSS6.9AI score0.01525EPSS
Exploits0References2
nessus
nessus
added 2025/08/07 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-50151

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - File access paths in configuration files uploaded by users with administrator access are not validated. This issue affects Apache Jena version up to 5.4.0. User...

8.8CVSS6.2AI score0.00937EPSS
Exploits0References3
jvn
jvn
added 2025/07/30 12:0 a.m.8 views

JVN#90566559: Apache Jena Fuseki vulnerable to path traversal

Jena Fuseki provided by The Apache Software Foundation contains the following vulnerability. Path traversal CWE-22 CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N Base Score 5.1 CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N Base Score 2.7 CVE-2025-49656 Impact A remore...

7.5CVSS6.2AI score0.01401EPSS
Exploits0
veracode
veracode
added 2025/07/24 7:11 a.m.6 views

Improper Input Validation

org.apache.jena, jena is vulnerable to Improper Input Validation. The vulnerability is due to lack of validation on file access paths in configuration files uploaded by administrators, which allows an attacker to upload arbitrary configurations and potentially manipulate system behavior...

8.8CVSS6.2AI score0.00937EPSS
Exploits0References4Affected Software1
veracode
veracode
added 2025/07/24 5:27 a.m.7 views

Improper Access Control

org.apache.jena, jena-fuseki is vulnerable to improper access control. The vulnerability is due to insufficient validation or restriction on file path locations when administrators create database files in Apache Jena, allows creation of files outside the intended directory structure...

7.5CVSS6.1AI score0.01401EPSS
Exploits0References6Affected Software1
cnvd
cnvd
added 2025/07/23 12:0 a.m.4 views

Apache Jena Input Validation Error Vulnerability

Apache Jena is the Apache Software Foundation's open source Java framework for building semantic web and linked data applications. A file path validation vulnerability exists in Apache Jena 5.4.0 and earlier versions, which stems from a failure to validate file access paths in configuration files...

8.8CVSS7AI score0.00937EPSS
Exploits0References1
Rows per page
Query Builder