Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5241 matches found

OSV
OSVadded 2025/07/15 9:15 a.m.2 views

SUSE-SU-2025:02311-1 Security update for protobuf

This update for protobuf fixes the following issues: - CVE-2025-4565: Fix parsing of untrusted Protocol Buffers data containing an arbitrary number of recursive groups or messages that can lead to crash due to RecursionError bsc1244663...

8.2CVSS7.3AI score0.00016EPSS
Exploits0References3
OSV
OSVadded 2025/07/15 9:15 a.m.2 views

SUSE-SU-2025:02310-1 Security update for protobuf

This update for protobuf fixes the following issues: - CVE-2025-4565: Fix parsing of untrusted Protocol Buffers data containing an arbitrary number of recursive groups or messages that can lead to crash due to RecursionError bsc1244663...

8.2CVSS7.3AI score0.00016EPSS
Exploits0References3
SUSE Linux
SUSE Linuxadded 2025/07/15 9:15 a.m.2 views

Security update for protobuf

This update for protobuf fixes the following issues: CVE-2025-4565: Fix parsing of untrusted Protocol Buffers data containing an arbitrary number of recursive groups or messages that can lead to crash due to RecursionError bsc1244663. Patch Instructions: To install this SUSE update use the SUSE...

8.2CVSS7.7AI score0.00016EPSS
Exploits0References4
OSV
OSVadded 2025/07/15 9:14 a.m.2 views

SUSE-SU-2025:02309-1 Security update for protobuf

This update for protobuf fixes the following issues: - CVE-2025-4565: Fix parsing of untrusted Protocol Buffers data containing an arbitrary number of recursive groups or messages that can lead to crash due to RecursionError bsc1244663...

8.2CVSS7.3AI score0.00016EPSS
Exploits0References3
Veracode
Veracodeadded 2025/07/14 9:29 a.m.5 views

Denial Of Service (DoS)

com.nimbusds:nimbus-jose-jwt is vulnerable to Denial Of Service DoS. The vulnerability is due to uncontrolled recursion due to lack of validation on JSON object nesting depth in JWT claim sets, allowing remote attackers to exhaust system resources with deeply nested structures...

5.8CVSS6.1AI score0.00143EPSS
Exploits0References7Affected Software1
SUSE CVE
SUSE CVEadded 2025/07/11 11:21 p.m.1 views

SUSE CVE-2025-48924

Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, and, from org.apache.commons:commons-lang3 3.0 before 3.18.0. The methods ClassUtils.getClass... can throw StackOverflowError on very long input...

4.7CVSS6.3AI score0.00099EPSS
Exploits0References7
Snyk
Snykadded 2025/07/11 3:31 p.m.1 views

Uncontrolled Recursion

Overview Affected versions of this package are vulnerable to Uncontrolled Recursion via the ClassUtils.getClass function. An attacker can cause the application to terminate unexpectedly by providing excessively long input values. Remediation Upgrade org.apache.commons:commons-lang3 to version...

8.8CVSS7AI score0.00099EPSS
Exploits0References2
Snyk
Snykadded 2025/07/11 3:31 p.m.4 views

Uncontrolled Recursion

Overview Affected versions of this package are vulnerable to Uncontrolled Recursion via the ClassUtils.getClass function. An attacker can cause the application to terminate unexpectedly by providing excessively long input values. Remediation There is no fixed version for commons-lang:commons-lang...

8.8CVSS7AI score0.00099EPSS
Exploits0References2
Github Security Blog
Github Security Blogadded 2025/07/11 3:31 p.m.6 views

Apache Commons Lang is vulnerable to Uncontrolled Recursion when processing long inputs

Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, and, from org.apache.commons:commons-lang3 3.0 before 3.18.0. The methods ClassUtils.getClass... can throw StackOverflowError on very long input...

5.3CVSS7AI score0.00099EPSS
Exploits0References9Affected Software2
OSV
OSVadded 2025/07/11 3:31 p.m.2 views

GHSA-J288-Q9X7-2F5V Apache Commons Lang is vulnerable to Uncontrolled Recursion when processing long inputs

Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, and, from org.apache.commons:commons-lang3 3.0 before 3.18.0. The methods ClassUtils.getClass... can throw StackOverflowError on very long input...

6.5CVSS6.7AI score0.00099EPSS
Exploits0References9
OSV
OSVadded 2025/07/11 3:15 p.m.4 views

AZL-65144 CVE-2025-48924 affecting package apache-commons-lang3 for versions less than 3.8.1-6

Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, and, from org.apache.commons:commons-lang3 3.0 before 3.18.0. The methods ClassUtils.getClass... can throw StackOverflowError on very long input...

5.3CVSS6.7AI score0.00099EPSS
Exploits0References1
OSV
OSVadded 2025/07/11 3:15 p.m.2 views

AZL-65181 CVE-2025-48924 affecting package apache-commons-lang3 for versions less than 3.8.1-6

Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, and, from org.apache.commons:commons-lang3 3.0 before 3.18.0. The methods ClassUtils.getClass... can throw StackOverflowError on very long input...

5.3CVSS7.1AI score0.00099EPSS
Exploits0References1
OSV
OSVadded 2025/07/11 3:15 p.m.1 views

DEBIAN-CVE-2025-48924

Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, and, from org.apache.commons:commons-lang3 3.0 before 3.18.0. The methods ClassUtils.getClass... can throw StackOverflowError on very long input...

5.3CVSS6.2AI score0.00099EPSS
Exploits0References1
OSV
OSVadded 2025/07/11 3:15 p.m.1 views

UBUNTU-CVE-2025-48924

Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, and, from org.apache.commons:commons-lang3 3.0 before 3.18.0. The methods ClassUtils.getClass... can throw StackOverflowError on very long input...

5.3CVSS6.7AI score0.00099EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2025/07/11 2:56 p.m.3 views

CVE-2025-48924 Apache Commons Lang, Apache Commons Lang: ClassUtils.getClass(...) can throw a StackOverflowError on very long inputs

Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, and, from org.apache.commons:commons-lang3 3.0 before 3.18.0. The methods ClassUtils.getClass... can throw StackOverflowError on very long input...

7.1AI score0.00099EPSS
Exploits0References1
CVE
CVEadded 2025/07/11 2:56 p.m.168 views

CVE-2025-48924

CVE-2025-48924 affects Apache Commons Lang: vulnerable in versions 2.0–2.6 of commons-lang and 3.0–before 3.18.0 of commons-lang3. The root cause is an uncontrolled recursion in ClassUtils.getClass(...) that can throw StackOverflowError on very long inputs, potentially causing an application to s...

5.3CVSS6.5AI score0.00099EPSS
Exploits0References6Affected Software1
OSV
OSVadded 2025/07/11 12:24 p.m.4 views

OESA-2025-1801 protobuf security update

Security Fixes: Any project that uses Protobuf Pure-Python backend to parse untrusted Protocol Buffers data containing an arbitrary number of recursive groups, recursive messages or a series of SGROUP tags can be corrupted by exceeding the Python recursion limit. This can result in a Denial of...

8.2CVSS7AI score0.00016EPSS
Exploits0References2
OSV
OSVadded 2025/07/11 12:24 p.m.2 views

OESA-2025-1800 protobuf security update

Security Fixes: Any project that uses Protobuf Pure-Python backend to parse untrusted Protocol Buffers data containing an arbitrary number of recursive groups, recursive messages or a series of SGROUP tags can be corrupted by exceeding the Python recursion limit. This can result in a Denial of...

8.2CVSS7AI score0.00016EPSS
Exploits0References2
OSV
OSVadded 2025/07/11 12:24 p.m.3 views

OESA-2025-1799 protobuf security update

Security Fixes: Any project that uses Protobuf Pure-Python backend to parse untrusted Protocol Buffers data containing an arbitrary number of recursive groups, recursive messages or a series of SGROUP tags can be corrupted by exceeding the Python recursion limit. This can result in a Denial of...

8.2CVSS7AI score0.00016EPSS
Exploits0References2
OSV
OSVadded 2025/07/11 12:24 p.m.4 views

OESA-2025-1798 protobuf security update

Security Fixes: Any project that uses Protobuf Pure-Python backend to parse untrusted Protocol Buffers data containing an arbitrary number of recursive groups, recursive messages or a series of SGROUP tags can be corrupted by exceeding the Python recursion limit. This can result in a Denial of...

8.2CVSS7AI score0.00016EPSS
Exploits0References2
Rows per page
Query Builder