Known vulnerabilities in Apache Foundation Apache CXF

Known vulnerabilities in Apache Foundation Apache CXF

Vendor: Apache Foundation

Website: https://www.apache.org

Total Security Bulletins: 13

Security bulletins (13)

Secuity bulletin	Severity	Status	Published
SB2025101733: Remote code execution in Apache CXF	Medium	Patched	17.10.2025
SB2025022807: Denial of service in Apache CXF	Medium	Patched	28.02.2025
SB2024091810: Multiple vulnerabilities in Apache CXF	Medium	Patched	18.09.2024
SB2024031529: SSRF in Apache CXF	Medium	Patched	15.03.2024
SB2022122009: Multiple vulnerabilities in Apache CXF	Medium	Patched	20.12.2022
SB2021082016: Denial of service in Apache CXF	Medium	Patched	20.08.2021
SB2021040608: Denial of service in Apache CXF	Medium	Patched	06.04.2021
SB2020040206: Man-in-the-Middle (MitM) attack in Apache CXF	Low	Patched	02.04.2020
SB2020012013: Cross-site scripting in Apache CXF	Low	Patched	20.01.2020
SB2020011628: Information disclosure in Apache CXF	Medium	Patched	16.01.2020
SB2019110708: Multiple vulnerabilities in Apache CXF	Medium	Patched	07.11.2019
SB2018062910: Man-in-the-middle attack in Apache CXF	Low	Patched	29.06.2018
SB2017111431: Denial of service in Apache CXF	Low	Patched	14.11.2017