Apache Ignite
3 CVEs affecting Apache Ignite. Latest disclosed: 2026-05-28. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2017-7686 | High | 7.5 | 2017-06-28 | Apache Ignite 1.0.0-RC3 to 2.0 uses an update notifier component to update the users about new project releases that include additional functionality, bug fixe… |
CVE-2025-48977 | Medium | 6.5 | 2026-05-28 | Relative Path Traversal vulnerability in Apache Ignite REST API. Authenticated REST API users can read any file on the server with "cmd=log" command and a log… |
CVE-2016-6805 | Medium | 5.9 | 2017-04-07 | Apache Ignite before 1.9 allows man-in-the-middle attackers to read arbitrary files via XXE in modified update-notifier documents. |