Lucene search
K

265 matches found

OSV
OSV
added 2025/06/17 10:9 a.m.6 views

RHSA-2025:9166 Red Hat Security Advisory: apache-commons-beanutils security update

Bulletin has no description...

8.8CVSS8.8AI score0.01548EPSS
Exploits1References11
RedHat Linux
RedHat Linux
added 2025/06/17 9:7 a.m.5 views

commons-beanutils: Apache Commons BeanUtils: PropertyUtilsBean does not suppresses an enum's declaredClass property by default

A flaw was found in Apache Commons BeanUtils. This vulnerability allows remote attackers to execute arbitrary code via uncontrolled access to the declaredClass property on Java enum objects, which can expose the class loader when property paths are passed from external sources to methods like...

8.8CVSS7.6AI score0.01548EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2025/06/17 9:7 a.m.13 views

Important: Red Hat Security Advisory: apache-commons-beanutils security update

An update for apache-commons-beanutils is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.8CVSS6.7AI score0.01548EPSS
Exploits1References2
OSV
OSV
added 2025/06/17 12:0 a.m.7 views

ALSA-2025:9166 Important: apache-commons-beanutils security update

The Apache Commons BeanUtils library provides utility methods for accessing and modifying properties of arbitrary JavaBeans. Security Fixes: commons-beanutils: Apache Commons BeanUtils: PropertyUtilsBean does not suppresses an enum's declaredClass property by default CVE-2025-48734 For more detai...

8.8CVSS8.9AI score0.01548EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/06/17 12:0 a.m.12 views

RHEL 10 : apache-commons-beanutils (RHSA-2025:9166)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:9166 advisory. The Apache Commons BeanUtils library provides utility methods for accessing and modifying properties of arbitrary JavaBeans. Security Fixes:...

8.8CVSS6.8AI score0.01548EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2025/06/16 3:3 p.m.5 views

commons-beanutils: Apache Commons BeanUtils: PropertyUtilsBean does not suppresses an enum's declaredClass property by default

A flaw was found in Apache Commons BeanUtils. This vulnerability allows remote attackers to execute arbitrary code via uncontrolled access to the declaredClass property on Java enum objects, which can expose the class loader when property paths are passed from external sources to methods like...

8.8CVSS7.6AI score0.01548EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2025/06/16 3:3 p.m.4 views

commons-beanutils: Apache Commons BeanUtils: PropertyUtilsBean does not suppresses an enum's declaredClass property by default

A flaw was found in Apache Commons BeanUtils. This vulnerability allows remote attackers to execute arbitrary code via uncontrolled access to the declaredClass property on Java enum objects, which can expose the class loader when property paths are passed from external sources to methods like...

8.8CVSS7.6AI score0.01548EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2025/06/16 2:55 p.m.5 views

commons-beanutils: Apache Commons BeanUtils: PropertyUtilsBean does not suppresses an enum's declaredClass property by default

A flaw was found in Apache Commons BeanUtils. This vulnerability allows remote attackers to execute arbitrary code via uncontrolled access to the declaredClass property on Java enum objects, which can expose the class loader when property paths are passed from external sources to methods like...

8.8CVSS7.6AI score0.01548EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2025/06/16 2:55 p.m.5 views

Important: Red Hat Security Advisory: apache-commons-beanutils security update

An update for apache-commons-beanutils is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.8CVSS6.7AI score0.01548EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.6 views

RHEL 9 : apache-commons-beanutils (RHSA-2025:9114)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:9114 advisory. The Apache Commons BeanUtils library provides utility methods for accessing and modifying properties of arbitrary JavaBeans. Security Fixes:...

8.8CVSS6.9AI score0.01548EPSS
Exploits1References4
OSV
OSV
added 2025/06/16 12:0 a.m.8 views

ALSA-2025:9114 Important: apache-commons-beanutils security update

The Apache Commons BeanUtils library provides utility methods for accessing and modifying properties of arbitrary JavaBeans. Security Fixes: commons-beanutils: Apache Commons BeanUtils: PropertyUtilsBean does not suppresses an enum's declaredClass property by default CVE-2025-48734 For more detai...

8.8CVSS8.9AI score0.01548EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2025/06/11 3:34 p.m.4 views

commons-beanutils: Apache Commons BeanUtils: PropertyUtilsBean does not suppresses an enum's declaredClass property by default

A flaw was found in Apache Commons BeanUtils. This vulnerability allows remote attackers to execute arbitrary code via uncontrolled access to the declaredClass property on Java enum objects, which can expose the class loader when property paths are passed from external sources to methods like...

8.8CVSS7.6AI score0.01548EPSS
Exploits1References8
Amazon
Amazon
added 2025/06/10 12:0 a.m.3 views

Important: apache-commons-beanutils

Issue Overview: Improper Access Control vulnerability in Apache Commons. A special BeanIntrospector class was added in version 1.9.2. This can be used to stop attackers from using the declared class property of Java enum objects to get access to the classloader. However this protection was not...

8.8CVSS7.3AI score0.01548EPSS
Exploits1
OpenVAS
OpenVAS
added 2025/06/06 12:0 a.m.7 views

openSUSE Security Advisory (SUSE-SU-2025:01815-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.9AI score0.01548EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2025/06/06 12:0 a.m.6 views

SUSE: Security Advisory (SUSE-SU-2025:01815-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.9AI score0.01548EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2025/06/05 2:19 a.m.10 views

Important: Red Hat Security Advisory: Red Hat build of Cryostat 4.0.1: new RHEL 9 container image security update

New Red Hat build of Cryostat 4.0.1 on RHEL 9 container images are now available. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.8CVSS6.7AI score0.01548EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/06/05 12:0 a.m.7 views

SUSE SLES15 / openSUSE 15 Security Update : apache-commons-beanutils (SUSE-SU-2025:01815-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:01815-1 advisory. Update to 1.11.0 - CVE-2025-48734: Fixed possible arbitrary code execution vulnerability bsc1243793 Full changelog:...

8.8CVSS7.4AI score0.01548EPSS
Exploits1References4
OSV
OSV
added 2025/06/04 5:1 p.m.3 views

SUSE-SU-2025:01815-1 Security update for apache-commons-beanutils

This update for apache-commons-beanutils fixes the following issues: Update to 1.11.0 - CVE-2025-48734: Fixed possible arbitrary code execution vulnerability bsc1243793 Full changelog: https://commons.apache.org/proper/commons-beanutils/changes.htmla1.11.0...

8.8CVSS9.1AI score0.01548EPSS
Exploits1References3
Veracode
Veracode
added 2025/05/30 9:52 a.m.12 views

Improper Access Control

Apache Commons BeanUtils is vulnerable to Improper Access Control. The vulnerability is due to insecure property access due to failure to restrict access to the declaredClass property of Java enums, allowing attackers to access the classloader and potentially execute arbitrary code...

8.8CVSS8.9AI score0.01548EPSS
Exploits1References6Affected Software2
OSV
OSV
added 2025/05/30 12:0 a.m.3 views

OPENSUSE-SU-2025:15175-1 apache-commons-beanutils-1.11.0-1.1 on GA media

These are all security issues fixed in the apache-commons-beanutils-1.11.0-1.1 package on the GA media of openSUSE Tumbleweed...

8.8CVSS6.7AI score0.01548EPSS
Exploits1References1
Rows per page
Query Builder