Known Vulnerabilities for Commons Fileupload by Apache

Listed below are 4 of the newest known vulnerabilities associated with "Commons Fileupload" by "Apache".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2016-1000031	Apache Commons FileUpload before 1.3.3 DiskFileItem File Manipulation Remote Code Execution	9.8 - CRITICAL	2016-10-25	2023-11-07
CVE-2016-3092	The MultipartStream class in Apache Commons Fileupload before 1.3.2, as used in Apache Tomcat 7.x before 7.0.70, 8.x before 8...	7.5 - HIGH	2016-07-04	2023-12-08
CVE-2014-0050	MultipartStream.java in Apache Commons FileUpload before 1.3.1, as used in Apache Tomcat, JBoss Web, and other products, allo...	7.5 - HIGH	2014-04-01	2023-11-07
CVE-2013-0248	The default configuration of javax.servlet.context.tempdir in Apache Commons FileUpload 1.0 through 1.2.2 uses the /tmp direc...	3.3 - LOW	2013-03-15	2021-07-17

Known Affected Configurations (CPE V2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Apache	Commons Fileupload	1.3.3	All	All	All
Application	Apache	Commons Fileupload	1.3.2	All	All	All
Application	Apache	Commons Fileupload	1.3.1	All	All	All
Application	Apache	Commons Fileupload	1.3	All	All	All
Application	Apache	Commons Fileupload	1.2.2	All	All	All
Application	Apache	Commons Fileupload	1.2.1	All	All	All
Application	Apache	Commons Fileupload	1.2	All	All	All
Application	Apache	Commons Fileupload	1.1.1	All	All	All
Application	Apache	Commons Fileupload	1.1	All	All	All
Application	Apache	Commons Fileupload	1.0	All	All	All