Latest critical severity vulnerabilities for "apache cxf"

Where

AND

Sort:

Apache CXFApache CXF: Untrusted JMS configuration can lead to RCE

Risk 93

Severity

9.8

First published (updated )

CVE-2025-48913

Apache CXFApache CXF: SSRF vulnerability via WADL stylesheet parameter

Risk 71

Severity

9.1

First published (updated )

CVE-2024-29736

maven/org.apache.cxf:cxf-coreApache CXF SSRF Vulnerability using the Aegis databinding

Risk 49

Severity

9.3

EPSS

0.04%

First published (updated )

CVE-2024-28752

redhat/eap7-apache-cxfApache CXF SSRF Vulnerability

Risk 90

Severity

9.8

First published (updated )

CVE-2022-46364

redhat/cxfA flaw was found in cxf in versions prior to 3.2.11 and 3.3.4. The access token services do not prop…

Risk 88

Severity

9.8

First published (updated )

CVE-2019-12419

Apache CXFThe WS-SP UsernameToken policy in Apache CXF 2.4.5 and 2.5.1 allows remote attackers to bypass authe…

Risk 86

Severity

9.8

First published (updated )

CVE-2012-0803

Apache CXFApache CXF 2.4.x before 2.4.8, 2.5.x before 2.5.4, and 2.6.x before 2.6.1, when a Supporting Token s…

Risk 88

Severity

First published (updated )

CVE-2012-2379

Apache CXFInput Validation

Risk 86

Severity

9.8

First published (updated )

CVE-2010-2076

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

Trending

Versions

Apache CXFApache CXF: Untrusted JMS configuration can lead to RCE

Apache CXFApache CXF: SSRF vulnerability via WADL stylesheet parameter

maven/org.apache.cxf:cxf-coreApache CXF SSRF Vulnerability using the Aegis databinding

redhat/eap7-apache-cxfApache CXF SSRF Vulnerability

redhat/cxfA flaw was found in cxf in versions prior to 3.2.11 and 3.3.4. The access token services do not prop…

Don't miss critical vulnerabilities

Apache CXFThe WS-SP UsernameToken policy in Apache CXF 2.4.5 and 2.5.1 allows remote attackers to bypass authe…

Apache CXFApache CXF 2.4.x before 2.4.8, 2.5.x before 2.5.4, and 2.6.x before 2.6.1, when a Supporting Token s…

Apache CXFInput Validation

Company

Resources

Contact