Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
Apache Commons FileUpload allows remote code execution
MINI-jwrq-pvv6-p9x6
Summary
A flaw in Apache Commons FileUpload can allow hackers to execute malicious code on a server. This can happen when a user uploads a specially crafted file, potentially leading to unauthorized access to sensitive data or system takeover. Update to the latest version of Apache Commons FileUpload to fix this issue.
What to do
- Update argocd-3.3 to version 3.3.6-r2.
- Update argocd-3.3-repo-server to version 3.3.6-r2.
- Update argocd-3.3-compat to version 3.3.6-r2.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| – | argocd-3.3 | <= 3.3.6-r2 | 3.3.6-r2 |
| – | argocd-3.3-repo-server | <= 3.3.6-r2 | 3.3.6-r2 |
| – | argocd-3.3-compat | <= 3.3.6-r2 | 3.3.6-r2 |
Original title
MINI-jwrq-pvv6-p9x6
Published: 5 Apr 2026 · Updated: 5 Apr 2026 · First seen: 5 Apr 2026