Lucene search
K

94 matches found

Github Security Blog
Github Security Blog
added 2025/07/11 3:31 p.m.8 views

Apache Commons Lang is vulnerable to Uncontrolled Recursion when processing long inputs

Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, and, from org.apache.commons:commons-lang3 3.0 before 3.18.0. The methods ClassUtils.getClass... can throw StackOverflowError on very long input...

5.3CVSS7AI score0.02164EPSS
Exploits0References9Affected Software2
Snyk
Snyk
added 2025/07/11 3:31 p.m.3 views

Uncontrolled Recursion

Overview Affected versions of this package are vulnerable to Uncontrolled Recursion via the ClassUtils.getClass function. An attacker can cause the application to terminate unexpectedly by providing excessively long input values. Remediation Upgrade org.apache.commons:commons-lang3 to version...

8.8CVSS7AI score0.02164EPSS
Exploits0References2
OSV
OSV
added 2025/07/11 3:31 p.m.4 views

GHSA-J288-Q9X7-2F5V Apache Commons Lang is vulnerable to Uncontrolled Recursion when processing long inputs

Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, and, from org.apache.commons:commons-lang3 3.0 before 3.18.0. The methods ClassUtils.getClass... can throw StackOverflowError on very long input...

6.5CVSS6.7AI score0.02164EPSS
Exploits0References9
OSV
OSV
added 2025/07/11 3:15 p.m.6 views

CVE-2025-48924

Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, and, from org.apache.commons:commons-lang3 3.0 before 3.18.0. The methods ClassUtils.getClass... can throw StackOverflowError on very long input...

5.3CVSS5.8AI score
Exploits0References6
NVD
NVD
added 2025/07/11 3:15 p.m.6 views

CVE-2025-48924

Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, and, from org.apache.commons:commons-lang3 3.0 before 3.18.0. The methods ClassUtils.getClass... can throw StackOverflowError on very long input...

5.3CVSS0.02164EPSS
Exploits0References6
OSV
OSV
added 2025/07/11 3:15 p.m.8 views

AZL-65144 CVE-2025-48924 affecting package apache-commons-lang3 for versions less than 3.8.1-6

Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, and, from org.apache.commons:commons-lang3 3.0 before 3.18.0. The methods ClassUtils.getClass... can throw StackOverflowError on very long input...

5.3CVSS6.7AI score0.02164EPSS
Exploits0References1
OSV
OSV
added 2025/07/11 3:15 p.m.7 views

AZL-65181 CVE-2025-48924 affecting package apache-commons-lang3 for versions less than 3.8.1-6

Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, and, from org.apache.commons:commons-lang3 3.0 before 3.18.0. The methods ClassUtils.getClass... can throw StackOverflowError on very long input...

5.3CVSS7.1AI score0.02164EPSS
Exploits0References1
OSV
OSV
added 2025/07/11 3:15 p.m.6 views

UBUNTU-CVE-2025-48924

Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, and, from org.apache.commons:commons-lang3 3.0 before 3.18.0. The methods ClassUtils.getClass... can throw StackOverflowError on very long input...

5.3CVSS6.7AI score0.02164EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/07/11 2:56 p.m.19 views

CVE-2025-48924 Apache Commons Lang, Apache Commons Lang: ClassUtils.getClass(...) can throw a StackOverflowError on very long inputs

Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, and, from org.apache.commons:commons-lang3 3.0 before 3.18.0. The methods ClassUtils.getClass... can throw StackOverflowError on very long input...

0.02164EPSS
Exploits0References1
CVE
CVE
added 2025/07/11 2:56 p.m.196 views

CVE-2025-48924

CVE-2025-48924 affects Apache Commons Lang: vulnerable in versions 2.0–2.6 of commons-lang and 3.0–before 3.18.0 of commons-lang3. The root cause is an uncontrolled recursion in ClassUtils.getClass(...) that can throw StackOverflowError on very long inputs, potentially causing an application to s...

5.3CVSS6.5AI score0.02164EPSS
Exploits0References6Affected Software1
Vulnrichment
Vulnrichment
added 2025/07/11 2:56 p.m.5 views

CVE-2025-48924 Apache Commons Lang, Apache Commons Lang: ClassUtils.getClass(...) can throw a StackOverflowError on very long inputs

Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, and, from org.apache.commons:commons-lang3 3.0 before 3.18.0. The methods ClassUtils.getClass... can throw StackOverflowError on very long input...

7.1AI score0.02164EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2025/07/11 2:56 p.m.6 views

CVE-2025-48924

Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, and, from org.apache.commons:commons-lang3 3.0 before 3.18.0. The methods ClassUtils.getClass... can throw StackOverflowError on very long input...

5.3CVSS6.2AI score0.02164EPSS
Exploits0
CNNVD
CNNVD
added 2025/07/11 12:0 a.m.3 views

Apache Commons Lang 安全漏洞

Apache Commons Lang is a tool library of the Apache USA Foundation. A security vulnerability exists in Apache Commons Lang versions 2.0 through 2.6 and 3.0 through versions prior to 3.18.0, which stems from the presence of infinite recursion in the ClassUtils.getClass method, which could lead to ...

5.3CVSS6.3AI score0.02164EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2024/05/24 12:0 a.m.55 views

pki-core:10.6 and pki-deps:10.6 security update

apache-commons-collections apache-commons-lang apache-commons-net bea-stax fasterxml-oss-parent 49-1 - Rebase to upstream version 49 26-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora28MassRebuild 26-5 - Fix license tag 26-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora27MassRebuild...

7.5CVSS7.2AI score0.94494EPSS
Exploits4
Rows per page
Query Builder