Apache Software Foundation - CVE CyberSecurity Database News (Page 5)

Oct 10, 2023 Java Apache Apache Software Foundation Apache Tomcat

CVE-2023-45648 - Exploiting Improper Input Validation in Apache Tomcat – Simple Explanation & Practical Examples

In November 2023, security researchers uncovered a significant vulnerability, CVE-2023-45648, in Apache Tomcat - a highly popular open-source Java application server. If you’re running

Oct 10, 2023 Java Apache Apache Software Foundation Apache Tomcat

CVE-2023-42795 - Information Leak in Apache Tomcat Due to Incomplete Cleanup

CVE-2023-42795 is a security vulnerability found in multiple versions of Apache Tomcat. It's classified as an "Incomplete Cleanup" issue, potentially allowing

Oct 10, 2023 Windows Exploit Java Apache Apache Software Foundation Apache Tomcat

CVE-2023-42794 - Denial of Service in Apache Tomcat from Incomplete Cleanup Vulnerability

--- Apache Tomcat is one of the most popular open-source web servers used for deploying Java applications. In late 2023, a significant vulnerability was discovered—

Sep 29, 2023 Java Apache Apache Software Foundation Apache Avro Java SDK

CVE-2023-39410 - Apache Avro Deserialization Bug Can Crash Java Applications – A Deep Dive

In today's world, data interchange formats like Avro are everywhere – powering everything from big data pipelines to messaging systems. But what happens when

Sep 14, 2023 Exploit Java Apache Apache Software Foundation Apache Commons Compress

CVE-2023-42503 - Exploiting Improper Input Validation in Apache Commons Compress (TAR Parsing) for Denial of Service

In late 2023, security researchers identified a Denial of Service (DoS) vulnerability in Apache Commons Compress library, affecting versions between 1.22 through 1.23.