Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:rpm/redhat/jakarta-commons-fileupload@1:1.1.1-7.7.ep5?arch=el6
purl pkg:rpm/redhat/jakarta-commons-fileupload@1:1.1.1-7.7.ep5?arch=el6
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 10.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-jc2q-ht2b-cfhx
Aliases:
CVE-2013-2186
GHSA-qx6h-9567-5fqw
The DiskFileItem class in Apache Commons FileUpload, as used in Red Hat JBoss BRMS 5.3.1; JBoss Portal 4.3 CP07, 5.2.2, and 6.0.0; and Red Hat JBoss Web Server 1.0.2 allows remote attackers to write to arbitrary files via a NULL byte in a file name in a serialized instance. There are no reported fixed by versions.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-01T14:50:06.889935+00:00 RedHat Importer Affected by VCID-jc2q-ht2b-cfhx https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2186.json 38.0.0