CVE-2025-48924 | Apache Commons Lang up to 2.6/3.17.x ClassUtils.getClass recursion

A vulnerability classified as problematic has been found in Apache Commons Lang up to 2.6/3.17.x. Affected is the function ClassUtils.getClass. The manipulation leads to uncontrolled recursion.

This vulnerability is traded as CVE-2025-48924. The attack can only be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More