Every CVE whose affected-product data names Apache Nutch, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2016-6809 — CVSS 9.8 (critical): Apache Tika before 1.14 allows Java code execution for serialized objects embedded in MATLAB files. The issue exists because Tika invokes…
CVE-2021-23901 — CVSS 9.1 (critical): An XML external entity (XXE) injection vulnerability was discovered in the Nutch DmozParser and is known to affect Nutch versions < 1.18…