Mend.io Vulnerability Database

What is a CVE vulnerability ID? icon What is a WS vulnerability ID? icon What is an MSC vulnerability ID? icon
New vulnerability? Tell us about it!
icon

We found results for “

WS-2014-0034

Good to know:

icon
icon

Date: February 17, 2014

The class FileUploadBase in Apache Commons Fileupload before 1.4 has potential resource leak - InputStream not closed on exception.

Language: Java

Severity Score

Related Resources (3)

https://commons.apache.org/proper/commons-fileupload/changes-report.html
https://github.com/apache/commons-fileupload/commit/5b4881d7f75f439326f54fa554a9ca7de6d60814
https://www.mend.io/vulnerability-database/WS-2014-0034

Severity Score

Weakness Type (CWE)

Missing Release of Memory after Effective Lifetime

CWE-401

Top Fix

icon

Upgrade Version

Upgrade to version cromwell - 0.26;lizetheb1920/high-chart - no_fix;existdb - no_fix;vufind/vufind - v3.1;vufind/vufind - dev-legacy/lbs4-daia;vufind/vufind - dev-release-5.0;vufind/vufind - dev-pullrequest_accessib_turn-my-account-menu-into-ul;vufind/vufind - dev-legacy/mink-autoretry;tikiwiki/diagram - v13.10.5;tikiwiki/diagram - v15.8.8;tikiwiki/diagram - v13.6.6;tikiwiki/diagram - v14.1.2;tikiwiki/diagram - v13.9.7;tikiwiki/diagram - v14.2.8;tikiwiki/diagram - v15.7.4;xjryanse/admin - v0.1.15;xjryanse/admin - v0.0.1;AppDynamics.Azure.SiteExtension.Java - 20.6.0.1;eslider/solr - no_fix;purepanel/dashboard-module - v1.1.2;flapjack - no_fix;xorti/mxgraph-editor - v3.9.8;geek1992/tp5_rbac - no_fix;geek1992/tp5_rbac - 1.0.0;io/fe - v0.0.1;ch4o5/x-tek_cmf - no_fix;flash20/yii2-adminh-asset - no_fix;bioconductor-rdavidwebservice - no_fix;Ratku.FrameWork.Web - 1.2.0.520;dcrphp/core - 1.0.7-alpha3;dcrphp/core - 1.0.1;Apace - no_fix;commons-fileupload:commons-fileupload:1.4;commons-fileupload:commons-fileupload:1.4;commons-fileupload:commons-fileupload:1.4;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.2.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.5.X;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.2.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-default:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.2.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.5.X;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.2.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.2.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-no-slf4j:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.2.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.2.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-web:1.4.1;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-wildfly:1.4.48;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.2.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.2.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.5.X;io.hawt:hawtio-default-offline:1.2.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-default-offline:1.4.1;io.hawt:hawtio-base:1.4.1;io.hawt:hawtio-base:1.4.1;io.hawt:hawtio-base:1.5.X;io.hawt:hawtio-base:1.2.1;io.hawt:hawtio-base:1.4.1;io.hawt:hawtio-base:1.4.1;io.hawt:hawtio-base:1.4.1;io.hawt:hawtio-base:1.4.1;io.hawt:hawtio-base:1.4.1;io.hawt:hawtio-base:1.4.1;io.hawt:hawtio-base:1.4.1;io.hawt:hawtio-base:1.4.1;io.hawt:hawtio-base:1.4.1;io.hawt:hawtio-base:1.4.1;io.hawt:hawtio-base:1.2.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.3.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.3.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:4.0.3;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.3.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:4.2.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;org.apache.karaf.webconsole:org.apache.karaf.webconsole.console:2.4.1;io.fabric8:gateway-servlet-example:2.0.0;io.fabric8:gateway-servlet-example:2.0.0;io.fabric8:gateway-servlet-example:2.0.0;io.fabric8:gateway-servlet-example:2.0.0;io.fabric8:gateway-servlet-example:2.0.0;io.fabric8:gateway-servlet-example:2.0.0;io.fabric8:gateway-servlet-example:1.2.0.redhat-133;io.fabric8:gateway-servlet-example:2.0.0;io.hawt:hawtio-karaf-terminal:1.4.1;io.hawt:hawtio-karaf-terminal:1.4.1;io.hawt:hawtio-karaf-terminal:1.4.1;io.hawt:hawtio-karaf-terminal:1.5.X;io.hawt:hawtio-karaf-terminal:1.4.1;io.hawt:hawtio-karaf-terminal:1.4.1;io.hawt:hawtio-karaf-terminal:1.4.1;io.hawt:hawtio-karaf-terminal:1.4.1;io.hawt:hawtio-karaf-terminal:1.4.1;io.hawt:hawtio-karaf-terminal:1.4.1;io.hawt:hawtio-karaf-terminal:1.4.1;io.hawt:hawtio-karaf-terminal:1.4.1;io.hawt:hawtio-karaf-terminal:1.4.1;io.hawt:hawtio-karaf-terminal:1.4.1;io.hawt:hawtio-karaf-terminal:1.4.1;io.hawt:hawtio-karaf-terminal:1.4.1;io.hawt:hawtio-karaf-terminal:1.2.1;io.hawt:hawtio-karaf-terminal:1.4.1;io.hawt:hawtio-karaf-terminal:1.2.1;io.hawt:hawtio-karaf-terminal:1.4.1;io.hawt:hawtio-karaf-terminal:1.4.1;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:2.0.0;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:1.4.31;io.hawt:hawtio-custom-app:1.4.31;io.hawt:sample:1.5.X;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.2.1;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.4.1;io.hawt:sample:1.5.X;io.hawt:sample:1.4.1;io.fabric8.support:support-webapp:no_fix;io.fabric8.support:support-webapp:no_fix;io.fabric8.support:support-webapp:no_fix;io.fabric8.support:support-webapp:no_fix;io.fabric8.support:support-webapp:1.2.0.redhat-133;io.fabric8.support:support-webapp:no_fix;io.fabric8.support:support-webapp:no_fix;io.fabric8.support:support-webapp:no_fix;io.fabric8.support:support-webapp:no_fix;io.fabric8.support:support-webapp:no_fix;io.fabric8.support:support-webapp:no_fix;io.fabric8.support:support-webapp:no_fix;io.fabric8.support:support-webapp:no_fix;io.fabric8.support:support-webapp:no_fix;io.fabric8.support:support-webapp:no_fix;io.fabric8.support:support-webapp:no_fix;io.fabric8.support:support-webapp:no_fix;io.fabric8.support:support-webapp:no_fix;org.riftsaw.console:switchyard-bpel-console-server:no_fix;org.riftsaw.console:switchyard-bpel-console-server:no_fix;org.riftsaw.console:switchyard-bpel-console-server:no_fix;org.riftsaw.console:switchyard-bpel-console-server:no_fix;org.uberfire:showcase-distribution-wars:7.40.0.Final;org.uberfire:showcase-distribution-wars:7.40.0.Final;org.apache.activemq:artemis-console:2.10.0;org.apache.activemq:artemis-console:2.12.0;org.apache.activemq:artemis-console:2.10.1;org.apache.activemq:artemis-console:2.14.0;org.modeshape:modeshape-web-explorer-war:no_fix;org.jboss.bpm:gwt-console-server:no_fix;org.jboss.bpm:gwt-console-server:no_fix;org.webjars.npm:github-com-d2-projects-d2-admin:no_fix

Learn More

CVSS v3.1

Base Score:
Attack Vector (AV): ADJACENT_NETWORK
Attack Complexity (AC): LOW
Privileges Required (PR): NONE
User Interaction (UI): REQUIRED
Scope (S): UNCHANGED
Confidentiality (C): LOW
Integrity (I): NONE
Availability (A): NONE

Do you need more information?

Contact Us