PT-2026-1148

CVE-2025-22184 - Apache Struts Command Injection CVE ID : CVE-2025-22184 Published : Jan. 1, 2026, 1:15 a.m. | 3 hours, 5 minutes ago Description : Rejected reason: To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. Severity: 0.0 | NA Visit the...

PT-2026-1153

CVE-2025-22187 - Apache Struts Cross-Site Scripting XSS CVE ID : CVE-2025-22187 Published : Jan. 1, 2026, 1:15 a.m. | 3 hours, 5 minutes ago Description : Rejected reason: To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. Severity: 0.0 | NA Visi...

Security Bulletin: IBM Event Streams is vulnerable to Uncontrolled Recursion vulnerability (CVE-2025-48924)

Summary IBM Event Streams is vulnerable to Uncontrolled Recursion vulnerability due to the use of the Apache Commons Lang artifact. This artifact primarily used for utility functions such as string manipulation, object comparison, and handling common operations that simplify Java development...

K000158954: Apache Struts vulnerability CVE-2025-64775

Security Advisory Description Denial of Service vulnerability in Apache Struts, file leak in multipart request processing causes disk exhaustion. This issue affects Apache Struts: from 2.0.0 through 6.7.0, from 7.0.0 through 7.0.3. Users are recommended to upgrade to version 6.8.0 or 7.1.1, which...

Apache Tika JAR Detection

Binary data apachetikajardetect.nbin...

PT-2025-54481

CVE-2024-58247 - Apache Unassigned Vulnerability CVE ID : CVE-2024-58247 Published : Dec. 30, 2025, 1:16 p.m. | 47 minutes ago Description : Rejected reason: REJECT DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was in a CNA pool that was not assigned to any issues during 2024...

PT-2025-54478

CVE-2024-58244 - Apache None CVE ID : CVE-2024-58244 Published : Dec. 30, 2025, 1:16 p.m. | 47 minutes ago Description : Rejected reason: REJECT DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was in a CNA pool that was not assigned to any issues during 2024. Notes: none...

GHSA-X44P-GVRJ-PJ2R vulnerabilities

Vulnerabilities for packages: apache-nifi...

CVE-2025-14763 vulnerabilities

Vulnerabilities for packages: apache-nifi...

CVE-2025-14763 vulnerabilities

Vulnerabilities for packages: apache-nifi...

GHSA-X44P-GVRJ-PJ2R vulnerabilities

Vulnerabilities for packages: apache-nifi...

Exploit for Improper Certificate Validation in Apache Http_Server

Uefiscdi-Gov-Ro-Vulnerability- UNTESTED PAYLOADS, WAF-BYPASS,...

Security Bulletin: Vulnerability in Apache Tomcat affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge.

Summary Potential vulnerability in Apache Tomcat has been identified that affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component. . The vulnerability have been addressed. Refer to details for additional information...

Security Bulletin: Vulnerability in Apache Tomcat affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge.

Summary Potential vulnerability in Apache Tomcat has been identified that affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component. . The vulnerability have been addressed. Refer to details for additional information...

Security Bulletin: Multiple Security Vulnerabilities in IBM Sterling Partner Engagement Manager

Summary Multiple vulnerabilities were addressed in IBM Sterling Partner Engagement Manager versions 6.2.3.5 and 6.2.4.2. Vulnerability Details CVEID:CVE-2025-36124 DESCRIPTION: IBM WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.8 could allow a remote attacker to bypass security...

Alibaba Cloud Linux 3 : 0197: httpd:2.4 (ALINUX3-SA-2025:0197)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2025:0197 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2025-55753: An integer overflow in the...

PT-2025-53621

CVE-2025-14820 - CVE-2019-15666: Apache Struts XML Entity Injection Vulnerability CVE ID : CVE-2025-14820 Published : Dec. 25, 2025, 11:15 p.m. | 2 hours, 10 minutes ago Description : Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. Severity: 0.0 | NA...

[SECURITY] Fedora 42 Update: httpd-2.4.66-1.fc42

The Apache HTTP Server is a powerful, efficient, and extensible web server...

Apache Fineract Information Disclosure Vulnerability

Apache Fineract is a set of open source digital financial services platform of the U.S. Apache Apache Foundation. The platform can provide users with data management, loan and savings portfolio management and real-time financial data and other functions. Apache Fineract suffers from an informatio...

Apache Fineract Security Bypass Vulnerability

Apache Fineract is a set of open source digital financial services platform from the U.S. Apache Apache Foundation. The platform can provide users with data management, loan and savings portfolio management and real-time financial data and other functions. Apache Fineract suffers from a security...