144 matches found
CVE-2026-2332 vulnerabilities
Vulnerabilities for packages: apache-pulsar-fips, akhq, kafka, apache-hop, apache-hop-fips, kafka-fips, clojure-tools, spark-kubernetes-operator-fips, apache-jena-fuseki, apache-nifi, jenkins, solr, neo4j, spark-kubernetes-operator, strimzi-kafka-operator-fips, apache-pulsar, wso2is...
GHSA-355H-QMC2-WPWF vulnerabilities
Vulnerabilities for packages: apache-pulsar-fips, akhq, kafka, apache-hop, apache-hop-fips, kafka-fips, clojure-tools, spark-kubernetes-operator-fips, apache-jena-fuseki, apache-nifi, jenkins, solr, neo4j, spark-kubernetes-operator, strimzi-kafka-operator-fips, apache-pulsar, wso2is...
CVE-2026-34480 vulnerabilities
Vulnerabilities for packages: pinot-fips, tritonserver-backend-vllm-cuda-13.0, apache-hop, camunda-zeebe, camunda, kserve-modelmesh, spark, neo4j, kafka, akhq, opensearch, kafka-bridge-fips, commercial-elasticsearch, pinot, nuxeo, apache-jena-fuseki, celeborn, druid, ghidra,...
GHSA-C4QC-4Q9P-M9Q9 vulnerabilities
Vulnerabilities for packages: apache-jena-fuseki, neo4j...
CVE-2026-23901 vulnerabilities
Vulnerabilities for packages: apache-jena-fuseki, neo4j...
Security Bulletin: Due to use of Apache Jena SDB, IBM Jazz Reporting Service is affected by a JDBC Deserialisation attack.
Summary Apache Jena SDB is used internally by IBM Jazz Reporting Service CVE-2022-45136. Vulnerability Details CVEID:CVE-2022-45136 DESCRIPTION: Apache Jena SDB 3.17.0 and earlier is vulnerable to a JDBC Deserialisation attack if the attacker is able to control the JDBC URL used or cause the...
EUVD-2021-2007
Malware in sbrugna...
EUVD-2022-3938
Malicious code in bioql PyPI...
EUVD-2025-22072
Malicious code in bioql PyPI...
EUVD-2025-22076
Malicious code in bioql PyPI...
EUVD-2023-2087
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2021-33192
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability in the HTML pages of Apache Jena Fuseki allows an attacker to execute arbitrary javascript on certain page views. This issue affects Apache Jena...
Linux Distros Unpatched Vulnerability : CVE-2022-28890
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability in the RDF/XML parser of Apache Jena allows an attacker to cause an external DTD to be retrieved. This issue affects Apache Jena version 4.4.0 a...
Linux Distros Unpatched Vulnerability : CVE-2021-39239
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability in XML processing in Apache Jena, in versions up to 4.1.0, may allow an attacker to execute XML External Entities XXE, including exposing the...
Linux Distros Unpatched Vulnerability : CVE-2022-45136
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Apache Jena SDB 3.17.0 and earlier is vulnerable to a JDBC Deserialisation attack if the attacker is able to control the JDBC URL used or cause the underlying...
Linux Distros Unpatched Vulnerability : CVE-2025-50151
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - File access paths in configuration files uploaded by users with administrator access are not validated. This issue affects Apache Jena version up to 5.4.0. User...
JVN#90566559: Apache Jena Fuseki vulnerable to path traversal
Jena Fuseki provided by The Apache Software Foundation contains the following vulnerability. Path traversal CWE-22 CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N Base Score 5.1 CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N Base Score 2.7 CVE-2025-49656 Impact A remore...
Improper Input Validation
org.apache.jena, jena is vulnerable to Improper Input Validation. The vulnerability is due to lack of validation on file access paths in configuration files uploaded by administrators, which allows an attacker to upload arbitrary configurations and potentially manipulate system behavior...
Improper Access Control
org.apache.jena, jena-fuseki is vulnerable to improper access control. The vulnerability is due to insufficient validation or restriction on file path locations when administrators create database files in Apache Jena, allows creation of files outside the intended directory structure...
Apache Jena Path Traversal Vulnerability
Apache Jena is the Apache Software Foundation's Semantic Web framework for building and processing RDF data. A path traversal vulnerability exists in Apache Jena 5.4.0 and earlier versions, which originates from a user with administrator privileges being able to create database files outside of t...