Apache Commons BeanUtils vulnerabilities

2021-03-1500:00:00

ubuntu.com

7.3 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

8.4 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.973 High

EPSS

Percentile

99.9%

JSON

Releases

Ubuntu 18.04 ESM
Ubuntu 16.04 ESM
Ubuntu 14.04 ESM

Packages

commons-beanutils - Apache Commons BeanUtils - Utility for manipulating Java beans

Details

It was discovered that Apache Commons BeanUtils improperly handled certain
input. An attacker could possibly use this vulnerability to cause a crash or execute arbitrary code.

OSVersionArchitecturePackageVersionFilename
Ubuntu18.04noarchlibcommons-beanutils-java< 1.9.3-1ubuntu0.1~esm1UNKNOWN
Ubuntu18.04noarchlibcommons-beanutils-java< 1.9.3-1UNKNOWN
Ubuntu18.04noarchlibcommons-beanutils-java-doc< 1.9.3-1UNKNOWN
Ubuntu18.04noarchlibcommons-beanutils-java-doc< 1.9.3-1ubuntu0.1~esm1UNKNOWN
Ubuntu16.04noarchlibcommons-beanutils-java< 1.9.2-3ubuntu0.1~esm1UNKNOWN
Ubuntu16.04noarchlibcommons-beanutils-java< 1.9.2-3UNKNOWN
Ubuntu16.04noarchlibcommons-beanutils-java-doc< 1.9.2-3UNKNOWN
Ubuntu14.04noarchlibcommons-beanutils-java< 1.9.1-1ubuntu0.1~esm1UNKNOWN
Ubuntu14.04noarchlibcommons-beanutils-java< 1.9.1-1UNKNOWN
Ubuntu14.04noarchlibcommons-beanutils-java-doc< 1.9.1-1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Ubuntu	18.04	noarch	libcommons-beanutils-java	< 1.9.3-1ubuntu0.1~esm1	UNKNOWN
Ubuntu	18.04	noarch	libcommons-beanutils-java	< 1.9.3-1	UNKNOWN
Ubuntu	18.04	noarch	libcommons-beanutils-java-doc	< 1.9.3-1	UNKNOWN
Ubuntu	18.04	noarch	libcommons-beanutils-java-doc	< 1.9.3-1ubuntu0.1~esm1	UNKNOWN
Ubuntu	16.04	noarch	libcommons-beanutils-java	< 1.9.2-3ubuntu0.1~esm1	UNKNOWN
Ubuntu	16.04	noarch	libcommons-beanutils-java	< 1.9.2-3	UNKNOWN
Ubuntu	16.04	noarch	libcommons-beanutils-java-doc	< 1.9.2-3	UNKNOWN
Ubuntu	14.04	noarch	libcommons-beanutils-java	< 1.9.1-1ubuntu0.1~esm1	UNKNOWN
Ubuntu	14.04	noarch	libcommons-beanutils-java	< 1.9.1-1	UNKNOWN
Ubuntu	14.04	noarch	libcommons-beanutils-java-doc	< 1.9.1-1	UNKNOWN