ALAS2-2025-2899 — Vulnetix

ALAS2-2025-2899 PUBLISHED

Affected Products

Vendor	Product	Versions
Amazon	apache-commons-beanutils

Exploit Intelligence

CVE-2025-48734 - Affects Apache Commons BeanUtils in versions prior to 1.11.0 (and the 2.x branch before 2.0.0-M2). (github-poc-repo)
CVE-2025-48734 - Affects Apache Commons BeanUtils in versions prior to 1.11.0 (and the 2.x branch before 2.0.0-M2). (github-poc)
report.html (github-poc)
security.xml (github-poc)
VulnerableDependencies.kt (github-poc)
owasp-suppressions-pending.xml (github-poc)
pom.xml (github-poc)
dependency-suppression.xml (github-poc)

Timeline

Jun 24, 2025 CVE Published

References

ALAS2-2025-2899: apache-commons-beanutils (important) advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›