Количество 11
Количество 11
BDU:2025-08956
Уязвимость функции ClassUtils.getClass() библиотеки Apache Commons Lang для языка программирования Java, позволяющая нарушителю вызывать отказ в обслуживании
ROS-20251216-7311
Уязвимость apache-commons-lang3
CVE-2025-48924
Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, and, from org.apache.commons:commons-lang3 3.0 before 3.18.0. The methods ClassUtils.getClass(...) can throw StackOverflowError on very long inputs. Because an Error is usually not handled by applications and libraries, a StackOverflowError could cause an application to stop. Users are recommended to upgrade to version 3.18.0, which fixes the issue.
CVE-2025-48924
Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, and, from org.apache.commons:commons-lang3 3.0 before 3.18.0. The methods ClassUtils.getClass(...) can throw StackOverflowError on very long inputs. Because an Error is usually not handled by applications and libraries, a StackOverflowError could cause an application to stop. Users are recommended to upgrade to version 3.18.0, which fixes the issue.
CVE-2025-48924
Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, and, from org.apache.commons:commons-lang3 3.0 before 3.18.0. The methods ClassUtils.getClass(...) can throw StackOverflowError on very long inputs. Because an Error is usually not handled by applications and libraries, a StackOverflowError could cause an application to stop. Users are recommended to upgrade to version 3.18.0, which fixes the issue.
CVE-2025-48924
Apache Commons Lang, Apache Commons Lang: ClassUtils.getClass(...) can throw a StackOverflowError on very long inputs
CVE-2025-48924
Uncontrolled Recursion vulnerability in Apache Commons Lang. This iss ...
SUSE-SU-2025:02818-1
Security update for apache-commons-lang3
SUSE-SU-2025:02786-1
Security update for apache-commons-lang3
SUSE-SU-2025:02785-1
Security update for apache-commons-lang3
GHSA-j288-q9x7-2f5v
Apache Commons Lang is vulnerable to Uncontrolled Recursion when processing long inputs
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2025-08956 Уязвимость функции ClassUtils.getClass() библиотеки Apache Commons Lang для языка программирования Java, позволяющая нарушителю вызывать отказ в обслуживании | CVSS3: 5.3 | 0% Низкий | 5 месяцев назад |
 | ROS-20251216-7311 Уязвимость apache-commons-lang3 | CVSS3: 5.3 | 0% Низкий | 4 дня назад |
 | CVE-2025-48924 Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, and, from org.apache.commons:commons-lang3 3.0 before 3.18.0. The methods ClassUtils.getClass(...) can throw StackOverflowError on very long inputs. Because an Error is usually not handled by applications and libraries, a StackOverflowError could cause an application to stop. Users are recommended to upgrade to version 3.18.0, which fixes the issue. | CVSS3: 5.3 | 0% Низкий | 5 месяцев назад |
 | CVE-2025-48924 Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, and, from org.apache.commons:commons-lang3 3.0 before 3.18.0. The methods ClassUtils.getClass(...) can throw StackOverflowError on very long inputs. Because an Error is usually not handled by applications and libraries, a StackOverflowError could cause an application to stop. Users are recommended to upgrade to version 3.18.0, which fixes the issue. | CVSS3: 3.7 | 0% Низкий | 5 месяцев назад |
 | CVE-2025-48924 Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, and, from org.apache.commons:commons-lang3 3.0 before 3.18.0. The methods ClassUtils.getClass(...) can throw StackOverflowError on very long inputs. Because an Error is usually not handled by applications and libraries, a StackOverflowError could cause an application to stop. Users are recommended to upgrade to version 3.18.0, which fixes the issue. | CVSS3: 5.3 | 0% Низкий | 5 месяцев назад |
 | CVE-2025-48924 Apache Commons Lang, Apache Commons Lang: ClassUtils.getClass(...) can throw a StackOverflowError on very long inputs | CVSS3: 5.3 | 0% Низкий | 4 месяца назад |
| CVE-2025-48924 Uncontrolled Recursion vulnerability in Apache Commons Lang. This iss ... | CVSS3: 5.3 | 0% Низкий | 5 месяцев назад |
 | SUSE-SU-2025:02818-1 Security update for apache-commons-lang3 | 0% Низкий | 4 месяца назад | |
| SUSE-SU-2025:02786-1 Security update for apache-commons-lang3 | 0% Низкий | 4 месяца назад | |
| SUSE-SU-2025:02785-1 Security update for apache-commons-lang3 | 0% Низкий | 4 месяца назад | |
| GHSA-j288-q9x7-2f5v Apache Commons Lang is vulnerable to Uncontrolled Recursion when processing long inputs | CVSS3: 6.5 | 0% Низкий | 5 месяцев назад |
Уязвимостей на страницу