VDB
OESA-2025-1803
OESA-2025-1803
PUBLISHED
CVSS 9.300000190734863 CRITICAL
apache-commons-beanutils security update
Risk Scores
CVSS 4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| openEuler:24.03-LTS-SP2 | apache-commons-beanutils | 0, 0 |
Exploit Intelligence
- CVE-2025-48734 - Affects Apache Commons BeanUtils in versions prior to 1.11.0 (and the 2.x branch before 2.0.0-M2). (github-poc-repo)
- CVE-2025-48734 - Affects Apache Commons BeanUtils in versions prior to 1.11.0 (and the 2.x branch before 2.0.0-M2). (github-poc)
- report.html (github-poc)
- security.xml (github-poc)
- VulnerableDependencies.kt (github-poc)
- owasp-suppressions-pending.xml (github-poc)
- pom.xml (github-poc)
- dependency-suppression.xml (github-poc)
Timeline
- Jul 11, 2025 CVE Published
- Sep 3, 2025 CVE Updated
- May 2, 2026 Security Advisory