CVE-2024-29133

CVE-2024-29133: Apache Commons Configuration: StackOverflowError calling ListDelimiterHandler.flatten(Object, int) with a cyclical object tree

Vendor Apache Software Foundation

Product Apache Commons Configuration

Weakness CWE-787

Published March 21, 2024

Last update February 13, 2025

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

Description

Out-of-bounds Write vulnerability in Apache Commons Configuration.This issue affects Apache Commons Configuration: from 2.0 before 2.10.1. Users are recommended to upgrade to version 2.10.1, which fixes the issue.

Key dates

Disclosure timeline

March 21, 2024 CVE published

February 13, 2025 Record updated