AZL-65181 — Vulnetix

AZL-65181 PUBLISHED

CVE-2025-48924 affecting package apache-commons-lang3 for versions less than 3.8.1-6

Affected Products

Vendor	Product	Versions
Azure Linux:3	apache-commons-lang3	0

Exploit Intelligence

Apache's commons-lang2 v2.6 with a backported fix for CVE-2025-48924 (github-poc)
pom-common.xml (github-poc)
VulnerableDependencies.kt (github-poc)
EncryptionUtil.java (github-poc)
druid-612f0710.json (github-poc)
dockerscan.yml (github-poc)
owasp-suppressions-pending.xml (github-poc)
pom.xml (github-poc)
pom.xml (github-poc)
dependencyCheckSuppression.xml (github-poc)

…and 3 more exploits

Timeline

Jul 11, 2025 CVE Published
Apr 21, 2026 CVE Updated

References

https://nvd.nist.gov/vuln/detail/CVE-2025-48924 url

Open in Interactive Console →

$ Console Community · 100/wk Open console ›