CVE-2024-47554 | Apache Commons IO up to 2.13.x org.apache.commons.io.input.XmlStreamReader resource consumption

Posted by Angelo Barbosa | Oct 3, 2024 | CVE

A vulnerability was found in Apache Commons IO up to 2.13.x. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component org.apache.commons.io.input.XmlStreamReader. The manipulation leads to resource consumption.

This vulnerability is known as CVE-2024-47554. The attack can only be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-47554 | Apache Commons IO up to 2.13.x org.apache.commons.io.input.XmlStreamReader resource consumption

Related Posts

CVE-2023-45292 | mojocn base64Captcha up to 1.3.5 id improper authentication (Issue 120)

CVE-2023-51394 | Silabs Ember ZNet SDK up to 7.3.x null pointer dereference

CVE-2024-0869 | Instant Images Plugin up to 6.1.0 on WordPress Options Update improper authentication

CVE-2024-1637 | 360 Javascript Viewer Plugin up to 1.7.12 on WordPress Settings Update authorization