Apache Virtual Computing Lab — known CVE vulnerabilities
Every CVE whose affected-product data names Apache Virtual Computing Lab, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2018-11773 — CVSS 9.8 (critical): Apache VCL versions 2.1 through 2.5 do not properly validate form input when processing a submitted block allocation. The form data is then…
CVE-2018-11772 — CVSS 7.2 (high): Apache VCL versions 2.1 through 2.5 do not properly validate cookie input when determining what node (if any) was previously selected in…
CVE-2018-11774 — CVSS 7.2 (high): Apache VCL versions 2.1 through 2.5 do not properly validate form input when adding and removing VMs to and from hosts. The form data is…