216.73.216.86

CVE-2025-48976

· Published 16/06/2025 15:15 · Modified 16/06/2025 20:15

Labels: CVE-2025-48976 2025-06-16CVE-2025-48976[email protected]

Essential information

Published
16/06/2025 15:15
Modified
16/06/2025 20:15
Author
Creator
CISA KEV
No
CWE

Description

Allocation of resources for multipart headers with insufficient limits enabled a DoS vulnerability in Apache Commons FileUpload. This issue affects Apache Commons FileUpload: from 1.0 before 1.6; from 2.0.0-M1 before 2.0.0-M4. Users are recommended to upgrade to versions 1.6 or 2.0.0-M4, which fix the issue.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
apache / commons fileupload cpe:2.3:a:apache:commons_fileupload:<1.6:*:*:*:*:*:*:*
apache / commons fileupload cpe:2.3:a:apache:commons_fileupload:<2.0.0-M4:*:*:*:*:*:*:*
apache / commons fileupload cpe:2.3:a:apache:commons_fileupload:1.6:*:*:*:*:*:*:*
apache / commons fileupload cpe:2.3:a:apache:commons_fileupload:2.0.0-M4:*:*:*:*:*:*:*

References