Known vulnerabilities in Apache Foundation Apache Commons Configuration

Vendor: Apache Foundation

Website: https://www.apache.org

Total Security Bulletins: 4

Security bulletins (4)

Secuity bulletin	Severity	Status	Published
SB2025050949: Denial of service in Apache Commons Configuration	Medium	Patched	09.05.2025
SB2024032169: Remote code execution in Apache Commons Configuration	High	Patched	21.03.2024
SB2022070645: Remote code execution in Apache Commons Configuration	High	Patched Public exploit	06.07.2022
SB2020031715: Code injection when parsing YAML files in Apache Commons Configuration	Medium	Patched	17.03.2020