CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2992 matches found

RedHat Linux•added 2025/05/14 5:51 p.m.•4 views

commons-compress: Denial of service caused by an infinite loop for a corrupted DUMP file

A loop with an unreachable exit condition Infinite Loop vulnerability was found in Apache Common Compress. This issue can lead to a denial of service...

8.1CVSS6.8AI score0.00441EPSS

Exploits0References6

Amazon•added 2025/05/13 12:0 a.m.•5 views

Medium: javapackages-bootstrap

Issue Overview: Uncontrolled Resource Consumption vulnerability in Apache Commons IO. The org.apache.commons.io.input.XmlStreamReader class may excessively consume CPU resources when processing maliciously crafted input. This issue affects Apache Commons IO: from 2.0 before 2.14.0. Users are...

4.3CVSS4.9AI score0.01249EPSS

Exploits0

Amazon•added 2025/05/13 12:0 a.m.•6 views

Medium: javapackages-bootstrap

4.3CVSS6.9AI score0.01249EPSS

Exploits0

Tenable Nessus•added 2025/05/13 12:0 a.m.•6 views

Amazon Linux 2023 : javapackages-bootstrap (ALAS2023-2025-970)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-970 advisory. Uncontrolled Resource Consumption vulnerability in Apache Commons IO. The org.apache.commons.io.input.XmlStreamReader class may excessively consume CPU resources when processing maliciously crafted inpu...

4.3CVSS6.5AI score0.01249EPSS

Exploits0References4

RedhatCVE•added 2025/05/11 10:9 a.m.•31 views

CVE-2025-46392

A flaw was found in the Apache Commons Configuration. This vulnerability allows uncontrolled resource consumption via loading untrusted configuration files or attacker-controlled usage patterns. Mitigation Mitigation for this issue is either not available or the currently available options do not...

3.3CVSS6AI score0.02054EPSS

Exploits0References6

SUSE CVE•added 2025/05/11 2:0 a.m.•3 views

SUSE CVE-2025-46392

Uncontrolled Resource Consumption vulnerability in Apache Commons Configuration 1.x. There are a number of issues in Apache Commons Configuration 1.x that allow excessive resource consumption when loading untrusted configurations or using unexpected usage patterns. The Apache Commons Configuratio...

6.5CVSS9.4AI score0.01663EPSS

Exploits0References2

OSV•added 2025/05/09 12:31 p.m.•5 views

GHSA-PVP8-3XJ6-8C6X Apache Commons Configuration Uncontrolled Resource Consumption

6.9CVSS6.7AI score0.02054EPSS

Exploits0References5

Github Security Blog•added 2025/05/09 12:31 p.m.•12 views

Apache Commons Configuration Uncontrolled Resource Consumption

6.5CVSS6.8AI score0.01663EPSS

Exploits0References5Affected Software1

OSV•added 2025/05/09 10:15 a.m.•2 views

DEBIAN-CVE-2025-46392

6.5CVSS6AI score0.01663EPSS

Exploits0References1

NVD•added 2025/05/09 10:15 a.m.•25 views

CVE-2025-46392

6.5CVSS0.01663EPSS

Exploits0References3

OSV•added 2025/05/09 10:15 a.m.•16 views

CVE-2025-46392

6.5CVSS6.7AI score0.02054EPSS

Exploits0References3

OSV•added 2025/05/09 10:15 a.m.•2 views

UBUNTU-CVE-2025-46392

6.5CVSS6.8AI score0.02054EPSS

Exploits0References5

Cvelist•added 2025/05/09 9:34 a.m.•31 views

CVE-2025-46392 Apache Commons Configuration: Uncontrolled Resource Consumption when loading untrusted configurations in 1.x

0.01663EPSS

Exploits0References3

Vulnrichment•added 2025/05/09 9:34 a.m.•20 views

CVE-2025-46392 Apache Commons Configuration: Uncontrolled Resource Consumption when loading untrusted configurations in 1.x

6.5AI score0.01663EPSS

Exploits0References3

CVE•added 2025/05/09 9:34 a.m.•137 views

CVE-2025-46392

CVE-2025-46392 describes an Uncontrolled Resource Consumption vulnerability in Apache Commons Configuration 1.x. The issue arises when loading untrusted configurations or using unusual usage patterns, leading to excessive resource use. The provided documents indicate that the Apache Commons Confi...

6.5CVSS6.6AI score0.01663EPSS

Exploits0References3Affected Software1

Debian CVE•added 2025/05/09 9:34 a.m.•7 views

CVE-2025-46392

6.5CVSS6AI score0.01663EPSS

Exploits0

CNNVD•added 2025/05/09 12:0 a.m.•1 views

Apache Commons Configuration 资源管理错误漏洞

Apache Commons Configuration is a generic configuration interface from the Apache Foundation that is primarily used to enable Java applications to read configuration data from multiple sources. A resource management error vulnerability exists in Apache Commons Configuration version 1.x. The...

7.3CVSS6.2AI score0.02054EPSS

Exploits0References5

Positive Technologies•added 2025/05/09 12:0 a.m.•3 views

PT-2025-20548 · Apache +1 · Apache Commons Configuration +1

Name of the Vulnerable Software and Affected Versions: Apache Commons Configuration versions 1.x Description: The issue is related to Uncontrolled Resource Consumption in Apache Commons Configuration 1.x, which can lead to excessive resource consumption when loading untrusted configurations or...

7.3CVSS3.5AI score0.02054EPSS

Exploits0References21

Tenable Nessus•added 2025/05/07 12:0 a.m.•5 views

Oracle JDeveloper DoS (April 2025 CPU)

The version of Oracle JDeveloper installed on the remote host is missing a security patch. It is, therefore, affected by denial of service vulnerability as referenced in the April 2025 CPU advisory. - Vulnerability in the Oracle JDeveloper product of Oracle Fusion Middleware component: Generic...

8.1CVSS6.3AI score0.01905EPSS

Exploits0References4

IBM Security Bulletins•added 2025/05/01 8:2 p.m.•9 views

Security Bulletin: IBM Watson Speech Services Cartridge v4.8.8 is vulnerable to an uncontrolled resource consumption in Apache Commons IO [CVE-2024-47554]

Summary IBM Watson Speech Services Cartridge is vulnerable to an uncontrolled resource consumption in Apache Commons IO, due to a flaw in the org.apache.commons.io.input.XmlStreamReader class that may allow maliciously crafted input to excessively consume CPU resources while processing...

4.3CVSS6.3AI score0.01249EPSS

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by