CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2992 matches found

OPENSUSE Linux•added 2024/10/09 12:0 a.m.•6 views

apache-commons-io-2.17.0-2.1 on GA media (moderate)

apache-commons-io-2.17.0-2.1 on GA media Announcement ID: openSUSE-SU-2024:14387-1 Rating: moderate Cross-References: CVE-2024-47554 CVSS scores: CVE-2024-47554 SUSE : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2024-47554 SUSE : 6.9...

6.9CVSS7.8AI score0.01249EPSS

Exploits0

IBM Security Bulletins•added 2024/10/08 1:59 p.m.•11 views

Security Bulletin: IBM Event Processing is vulnerable to a denial of service

Summary Operator of IBM Event Processing backend and operator is vulnerable to denial of service. CVE-2024-25710, CVE-2024-26308 Vulnerability Details CVEID:CVE-2024-25710 DESCRIPTION: Apache Commons Compress is vulnerable to a denial of service, caused by an infinite loop flaw. By persuading a...

8.1CVSS6.7AI score0.00898EPSS

Exploits0Affected Software1

Veracode•added 2024/10/08 12:39 p.m.•10 views

Uncontrolled Resource Consumption

Apache Commons IO is vulnerable to Uncontrolled Resource Consumption. The vulnerability is due to excessive CPU consumption caused by the org.apache.commons.io.input.XmlStreamReader class when processing maliciously crafted input...

4.3CVSS7AI score0.01249EPSS

Exploits0References5Affected Software1

OSV•added 2024/10/08 12:0 a.m.•9 views

OPENSUSE-SU-2024:14387-1 apache-commons-io-2.17.0-2.1 on GA media

These are all security issues fixed in the apache-commons-io-2.17.0-2.1 package on the GA media of openSUSE Tumbleweed...

4.3CVSS5.1AI score0.01249EPSS

Exploits0References2

SUSE CVE•added 2024/10/05 2:50 a.m.•1 views

SUSE CVE-2024-47554

Uncontrolled Resource Consumption vulnerability in Apache Commons IO. The org.apache.commons.io.input.XmlStreamReader class may excessively consume CPU resources when processing maliciously crafted input. This issue affects Apache Commons IO: from 2.0 before 2.14.0. Users are recommended to upgra...

5.3CVSS7.8AI score0.01249EPSS

Exploits0References6

IBM Security Bulletins•added 2024/10/04 9:46 a.m.•34 views

Security Bulletin: IBM Security Verify Governance has multiple vulnerabilities

Summary Multiple security vulnerabilities have been addressed in an update for IBM Security Verify Governance. Vulnerability Details CVEID:CVE-2024-30172 DESCRIPTION: The Bouncy Castle Crypto Package For Java is vulnerable to a denial of service, caused by an infinite loop in the Ed25519...

8.1CVSS8AI score0.01197EPSS

Exploits1Affected Software1

OSV•added 2024/10/03 12:30 p.m.•30 views

GHSA-78WR-2P64-HPWJ Apache Commons IO: Possible denial of service attack on untrusted input to XmlStreamReader

8.7CVSS4.9AI score0.01249EPSS

Exploits0References5

Github Security Blog•added 2024/10/03 12:30 p.m.•52 views

Apache Commons IO: Possible denial of service attack on untrusted input to XmlStreamReader

4.3CVSS6.8AI score0.01249EPSS

Exploits0References5Affected Software1

RedhatCVE•added 2024/10/03 12:25 p.m.•23 views

CVE-2024-47554

A vulnerability was found in the Apache Commons IO component in the org.apache.commons.io.input.XmlStreamReader class. Excessive CPU resource consumption can lead to a denial of service when an untrusted input is processed...

4.3CVSS6.3AI score0.01249EPSS

Exploits0References4

OSV•added 2024/10/03 12:15 p.m.•27 views

CVE-2024-47554

4.3CVSS7.1AI score

Exploits0References3

OSV•added 2024/10/03 12:15 p.m.•2 views

DEBIAN-CVE-2024-47554

4.3CVSS6.2AI score0.01249EPSS

Exploits0References1

OSV•added 2024/10/03 12:15 p.m.•7 views

AZL-50019 CVE-2024-47554 affecting package apache-commons-io for versions less than 2.14.0-1

4.3CVSS6.6AI score0.01249EPSS

Exploits0References1

NVD•added 2024/10/03 12:15 p.m.•26 views

CVE-2024-47554

4.3CVSS0.01249EPSS

Exploits0References3

OSV•added 2024/10/03 12:15 p.m.•5 views

AZL-50031 CVE-2024-47554 affecting package apache-commons-io for versions less than 2.14.0-1

4.3CVSS6.6AI score0.01249EPSS

Exploits0References1

OSV•added 2024/10/03 12:15 p.m.•4 views

UBUNTU-CVE-2024-47554

4.3CVSS6.7AI score0.01249EPSS

Exploits0References4

CVE•added 2024/10/03 11:32 a.m.•359 views

CVE-2024-47554

CVE-2024-47554 affects Apache Commons IO. An Uncontrolled Resource Consumption issue in XmlStreamReader may cause high CPU use when processing malicious input. Vulnerable version range: 2.0 <= v

4.3CVSS6.5AI score0.01249EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2024/10/03 11:32 a.m.•24 views

CVE-2024-47554 Apache Commons IO: Possible denial of service attack on untrusted input to XmlStreamReader

6.9AI score0.01249EPSS

Exploits0References1

Cvelist•added 2024/10/03 11:32 a.m.•29 views

CVE-2024-47554 Apache Commons IO: Possible denial of service attack on untrusted input to XmlStreamReader

0.01249EPSS

Exploits0References1

Debian CVE•added 2024/10/03 11:32 a.m.•22 views

CVE-2024-47554

4.3CVSS6.2AI score0.01249EPSS

Exploits0

CNNVD•added 2024/10/03 12:0 a.m.•2 views

Apache Commons IO 资源管理错误漏洞

Apache Commons IO is an application of the Apache USA Foundation. It provides a help to develop IO functionality. A resource management error vulnerability exists in Apache Commons IO version 2.0 up to and including 2.14.0, which stems from uncontrolled CPU resource consumption...

4.3CVSS6.7AI score0.01249EPSS

Exploits0References8

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by