Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

apache commons vfs vulnerabilities and exploits

(subscribe to this query)
7.5
CVSSv3

CVE-2025-27553

Relative Path Traversal vulnerability in Apache Commons VFS prior to 2.10.0. The FileObject API in Commons VFS has a 'resolveFile' method that takes a 'scope' parameter. Specifying 'NameScope.DESCENDENT' promises that "an exception is thrown if ...
Apache Software Foundation Apache Commons Vfs
NA

CVE-2025-30474

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Commons VFS. The FtpFileObject class can throw an exception when a file is not found, revealing the original URI in its message, which may include a password. The fix is to mask the password in the...
Apache Software Foundation Apache Commons Vfs
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
CVE-2025-39551hard-codedtype confusionmarkus drubbaCVE-2025-24054broken links removerCVE-2025-39567anthologizeCVE-2025-31201CVE-2025-29454file uploadCVE-2025-39558momen2009
Home
/
Search Results
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook