Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:maven/cn.hutool/hutool-core@5.8.24
purl pkg:maven/cn.hutool/hutool-core@5.8.24
Next non-vulnerable version 5.8.25
Latest non-vulnerable version 5.8.25
Risk 4.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-ppw8-nmyx-1bd4
Aliases:
CVE-2023-51080
GHSA-m5hf-m3r2-xq53
hutool-core was discovered to contain a stack overflow via NumberUtil.toBigDecimal method The NumberUtil.toBigDecimal method in hutool-core v5.8.23 was discovered to contain a stack overflow.
5.8.25
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-ppw8-nmyx-1bd4 hutool-core was discovered to contain a stack overflow via NumberUtil.toBigDecimal method The NumberUtil.toBigDecimal method in hutool-core v5.8.23 was discovered to contain a stack overflow. CVE-2023-51080
GHSA-m5hf-m3r2-xq53
VCID-x1kv-cg2v-yyd7 hutool-core discovered to contain an infinite loop in the StrSplitter.splitByRegex function hutool-core v5.8.23 was discovered to contain an infinite loop in the StrSplitter.splitByRegex function. This vulnerability allows attackers to cause a Denial of Service (DoS) via manipulation of the first two parameters. CVE-2023-51075
GHSA-7m7h-rgvp-3v4r

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T22:47:11.082238+00:00 GitLab Importer Fixing VCID-x1kv-cg2v-yyd7 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-core/CVE-2023-51075.yml 38.4.0
2026-04-16T22:47:10.338330+00:00 GitLab Importer Fixing VCID-ppw8-nmyx-1bd4 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-core/CVE-2023-51080.yml 38.4.0
2026-04-12T00:06:55.726079+00:00 GitLab Importer Fixing VCID-x1kv-cg2v-yyd7 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-core/CVE-2023-51075.yml 38.3.0
2026-04-12T00:06:54.889417+00:00 GitLab Importer Fixing VCID-ppw8-nmyx-1bd4 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-core/CVE-2023-51080.yml 38.3.0
2026-04-03T00:11:35.803865+00:00 GitLab Importer Fixing VCID-x1kv-cg2v-yyd7 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-core/CVE-2023-51075.yml 38.1.0
2026-04-03T00:11:34.977781+00:00 GitLab Importer Fixing VCID-ppw8-nmyx-1bd4 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-core/CVE-2023-51080.yml 38.1.0
2026-04-02T17:00:57.132486+00:00 GHSA Importer Affected by VCID-ppw8-nmyx-1bd4 https://github.com/advisories/GHSA-m5hf-m3r2-xq53 38.1.0
2026-04-02T17:00:57.106466+00:00 GHSA Importer Fixing VCID-x1kv-cg2v-yyd7 https://github.com/advisories/GHSA-7m7h-rgvp-3v4r 38.1.0
2026-04-01T12:58:08.596960+00:00 GithubOSV Importer Fixing VCID-x1kv-cg2v-yyd7 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/12/GHSA-7m7h-rgvp-3v4r/GHSA-7m7h-rgvp-3v4r.json 38.0.0
2026-04-01T12:52:20.265056+00:00 GitLab Importer Fixing VCID-x1kv-cg2v-yyd7 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-core/CVE-2023-51075.yml 38.0.0
2026-04-01T12:52:20.244798+00:00 GitLab Importer Fixing VCID-ppw8-nmyx-1bd4 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-core/CVE-2023-51080.yml 38.0.0