CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2992 matches found

Tenable Nessus•added 2025/10/07 12:0 a.m.•3 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: apache-commons-vfs (UTSA-2025-984774)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-984774 advisory. Relative Path Traversal vulnerability in Apache Commons VFS before 2.10.0. The FileObject API in Commons VFS has a 'resolveFile' method that takes a 'scope' paramete...

7.5CVSS6.6AI score0.01189EPSS

Exploits0References4

Tenable Nessus•added 2025/10/07 12:0 a.m.•4 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: tomcat (UTSA-2025-606733)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-606733 advisory. Allocation of resources for multipart headers with insufficient limits enabled a DoS vulnerability in Apache Commons FileUpload. This issue affects Apache Commons...

7.5CVSS7.2AI score0.63258EPSS

Exploits1References4

Tenable Nessus•added 2025/10/07 12:0 a.m.•3 views

Unity Linux 20.1070e Security Update: apache-commons-beanutils (UTSA-2025-589226)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-589226 advisory. Improper Access Control vulnerability in Apache Commons. A special BeanIntrospector class was added in version 1.9.2. This can be used to stop attackers from using t...

8.8CVSS7AI score0.01495EPSS

Exploits1References4

Tenable Nessus•added 2025/10/07 12:0 a.m.•4 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: apache-commons-fileupload (UTSA-2025-279266)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-279266 advisory. Allocation of resources for multipart headers with insufficient limits enabled a DoS vulnerability in Apache Commons FileUpload. This issue affects Apache Commons...

7.5CVSS7.2AI score0.63258EPSS

Exploits1References4

Tenable Nessus•added 2025/10/07 12:0 a.m.•3 views

Unity Linux 20.1060a / 20.1070a Security Update: tomcat (UTSA-2025-986129)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986129 advisory. Allocation of resources for multipart headers with insufficient limits enabled a DoS vulnerability in Apache Commons FileUpload. This issue affects Apache Commons...

7.5CVSS7.2AI score0.63258EPSS

Exploits1References4

Tenable Nessus•added 2025/10/06 12:0 a.m.•4 views

RockyLinux 10 : apache-commons-beanutils (RLSA-2025:9166)

The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:9166 advisory. commons-beanutils: Apache Commons BeanUtils: PropertyUtilsBean does not suppresses an enum's declaredClass property by default CVE-2025-48734 Tenable has extract...

8.8CVSS6.5AI score0.01495EPSS

Exploits1References3

OSV•added 2025/10/04 12:11 a.m.•6 views

RLSA-2025:9114 Important: apache-commons-beanutils security update

The Apache Commons BeanUtils library provides utility methods for accessing and modifying properties of arbitrary JavaBeans. Security Fixes: commons-beanutils: Apache Commons BeanUtils: PropertyUtilsBean does not suppresses an enum's declaredClass property by default CVE-2025-48734 For more detai...

8.8CVSS6.6AI score0.01495EPSS

Exploits1References2

Rockylinux•added 2025/10/04 12:11 a.m.•5 views

apache-commons-beanutils security update

An update is available for apache-commons-beanutils. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The Apache Commons BeanUtils library provides utility method...

8.8CVSS7.4AI score0.01495EPSS

Exploits1

Tenable Nessus•added 2025/10/04 12:0 a.m.•5 views

RockyLinux 10 : tomcat (RLSA-2025:14179)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:14179 advisory. tomcat: Apache Tomcat DoS in multipart upload CVE-2025-48988 tomcat: Apache Tomcat: Security constraint bypass for pre/post-resources CVE-2025-49125...

7.5CVSS7.6AI score0.63258EPSS

Exploits1References13

Tenable Nessus•added 2025/10/04 12:0 a.m.•3 views

RockyLinux 9 : tomcat (RLSA-2025:14181)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:14181 advisory. tomcat: Apache Tomcat DoS in multipart upload CVE-2025-48988 tomcat: Apache Tomcat: Security constraint bypass for pre/post-resources CVE-2025-49125...

7.5CVSS7.6AI score0.63258EPSS

Exploits1References15