Allocation of resources for multipart headers with insufficient limits enabled a DoS vulnerability in Apache Commons FileUpload.
This issue affects Apache Commons FileUpload: from 1.0 before 1.6; from 2.0.0-M1 before 2.0.0-M4.
Users are recommended to upgrade to versions 1.6 or 2.0.0-M4, which fix the issue.
{ "nvd_published_at": "2025-06-16T15:15:24Z", "severity": "HIGH", "github_reviewed_at": "2025-06-16T16:52:30Z", "github_reviewed": true, "cwe_ids": [ "CWE-770" ] }