VYPR

rpm package

suse/apache-commons-fileupload&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP3

pkg:rpm/suse/apache-commons-fileupload&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3

Vulnerabilities (2)

  • CVE-2025-48976HigJun 16, 2025
    affected < 1.6.0-150200.3.12.1fixed 1.6.0-150200.3.12.1

    Allocation of resources for multipart headers with insufficient limits enabled a DoS vulnerability in Apache Commons FileUpload. This issue affects Apache Commons FileUpload: from 1.0 before 1.6; from 2.0.0-M1 before 2.0.0-M4. Users are recommended to upgrade to versions 1.6 or

  • CVE-2023-24998HigFeb 20, 2023
    affected < 1.5-150200.3.9.1fixed 1.5-150200.3.9.1

    Apache Commons FileUpload before 1.5 does not limit the number of request parts to be processed resulting in the possibility of an attacker triggering a DoS with a malicious upload or series of uploads. Note that, like all of the file upload limits, the new configur