VYPR

rpm package

suse/jakarta-commons-fileupload&distro=SUSE OpenStack Cloud 9

pkg:rpm/suse/jakarta-commons-fileupload&distro=SUSE%20OpenStack%20Cloud%209

Vulnerabilities (2)

  • CVE-2023-24998Feb 20, 2023
    affected < 1.1.1-122.8.1fixed 1.1.1-122.8.1

    Apache Commons FileUpload before 1.5 does not limit the number of request parts to be processed resulting in the possibility of an attacker triggering a DoS with a malicious upload or series of uploads. Note that, like all of the file upload limits, the new configur

  • CVE-2016-3092HigJul 4, 2016
    affected < 1.1.1-122.8.1fixed 1.1.1-122.8.1

    The MultipartStream class in Apache Commons Fileupload before 1.3.2, as used in Apache Tomcat 7.x before 7.0.70, 8.x before 8.0.36, 8.5.x before 8.5.3, and 9.x before 9.0.0.M7 and other products, allows remote attackers to cause a denial of service (CPU consumption) via a long bo