Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:maven/commons-io/commons-io@2.14.0
purl pkg:maven/commons-io/commons-io@2.14.0
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-epm8-6b5f-s7aa Apache Commons IO: Possible denial of service attack on untrusted input to XmlStreamReader Uncontrolled Resource Consumption vulnerability in Apache Commons IO. The `org.apache.commons.io.input.XmlStreamReader` class may excessively consume CPU resources when processing maliciously crafted input. This issue affects Apache Commons IO: from 2.0 before 2.14.0. Users are recommended to upgrade to version 2.14.0 or later, which fixes the issue. CVE-2024-47554
GHSA-78wr-2p64-hpwj

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T23:10:16.935742+00:00 GitLab Importer Fixing VCID-epm8-6b5f-s7aa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/commons-io/commons-io/CVE-2024-47554.yml 38.4.0
2026-04-12T00:28:33.725445+00:00 GitLab Importer Fixing VCID-epm8-6b5f-s7aa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/commons-io/commons-io/CVE-2024-47554.yml 38.3.0
2026-04-03T00:36:19.356694+00:00 GitLab Importer Fixing VCID-epm8-6b5f-s7aa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/commons-io/commons-io/CVE-2024-47554.yml 38.1.0
2026-04-02T12:40:08.616110+00:00 GitLab Importer Fixing VCID-epm8-6b5f-s7aa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/commons-io/commons-io/CVE-2024-47554.yml 38.0.0
2026-04-01T16:06:31.318180+00:00 GHSA Importer Fixing VCID-epm8-6b5f-s7aa https://github.com/advisories/GHSA-78wr-2p64-hpwj 38.0.0
2026-04-01T12:49:23.163012+00:00 GithubOSV Importer Fixing VCID-epm8-6b5f-s7aa https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/10/GHSA-78wr-2p64-hpwj/GHSA-78wr-2p64-hpwj.json 38.0.0