11 matches found
Apache Airflow code execution vulnerability (CNVD-2024-33592)
Apache Airflow is the United States Apache Apache Foundation's set of open source platform for creating, managing and monitoring workflow. The platform is scalable and dynamic monitoring and other characteristics. Apache Airflow suffers from a code execution vulnerability that can be exploited by...
Apache Commons Configuration Out-of-Bounds Write Vulnerability (CNVD-2024-16109)
Apache Commons Configuration is the United States Apache Apache Foundation , a common configuration interface , it is mainly used to enable Java applications to read configuration data from a variety of sources . An out-of-bounds write vulnerability exists in Apache Commons Configuration versions...
Apache UIMA Deserialization Vulnerability
Apache UIMA is the United States Apache Apache Foundation, a componentized software architecture. Used to analyze large-volume unstructured information associated with end users. Apache UIMA version 3.5.0 before the existence of a deserialization vulnerability , the vulnerability stems from the...
Apache HTTP Server Buffer Overflow Vulnerability (CNVD-2023-80558)
Apache HTTP Server is the United States Apache Apache Foundation of an open source web server . The server is fast, reliable and can be expanded through a simple API. A buffer overflow vulnerability exists in Apache HTTP Server version 2.4.54 and earlier. An attacker can exploit this vulnerabilit...
Apache Airflow Authorization Problem Vulnerability (CNVD-2023-72233)
Apache Airflow is the United States Apache Apache Foundation's set of open source platform for creating, managing and monitoring workflow. The platform is scalable and dynamic monitoring and other characteristics. Apache Airflow versions prior to 2.7.1 have an authorization issue vulnerability th...
Apache Airflow Security Bypass Vulnerability
Apache Airflow is the United States Apache Apache Foundation's set of open source platform for creating, managing and monitoring workflow. The platform is scalable and dynamic monitoring and other characteristics. A security bypass vulnerability exists in Apache Airflow versions prior to 2.6.3,...
Apache Airflow Information Disclosure Vulnerability (CNVD-2023-55401)
Apache Airflow is the United States Apache Apache Foundation's set of open source platform for creating, managing and monitoring workflow. Apache Airflow suffers from an information disclosure vulnerability, the source program is not sufficiently protected for sensitive information, which can be...
Apache Tomcat Denial of Service Vulnerability (CNVD-2023-42970)
Apache Tomcat is the United States Apache Apache Foundation, a lightweight Web application server. Apache Tomcat suffers from a denial of service vulnerability that stems from not properly handling incoming error messages, which can be exploited by an attacker to cause a denial of service...
Apache Airflow Sqoop Provider Input Validation Error Vulnerability
Apache Airflow is the United States Apache Apache Foundation's set of open source platform for creating, managing and monitoring workflow. The platform is scalable and dynamic monitoring and other characteristics. An input validation error vulnerability exists in Apache Airflow Sqoop Provider...
Apache OpenOffice Data Forgery Issue Vulnerability (CNVD-2021-84241)
Apache OpenOffice is the United States Apache Apache Foundation's an open source office software suite . The suite contains text documents, spreadsheets, presentations, drawings, databases, and more. Versions of Apache OpenOffice prior to 4.1.10 are vulnerable to data forgery issues, which can be...
Apache Livy Cross-Site Scripting Vulnerability
Apache Livy is an application server of the United States Apache Corporation . Provides support for programmatic , fault-tolerant , multi-tenant submission of Spark jobs from Web, mobile applications. A cross-site scripting vulnerability exists in Livy server version 0.7.0-incubating, which can b...