This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SA-2025-074 - Apache Commons FileUpload DoS (CVE-2025-48976)

SamPirok
Community Manager Community Manager
Community Manager
‎02-18-2026 06:29 AM

Summary

Allocation of resources for multipart headers with insufficient limits enabled a DoS vulnerability in Apache Commons FileUpload.

 

Products Potentially Affected

OS/Product

Exposure

ExtremeAnalytics for Site Engine

Yes

ExtremeControl for Site Engine

Yes

ExtremeCloud IQ Controller (IQC/XCC)

Yes

 

Repair Recommendations

ExtremeAnalytics for Site Engine:

  • Fixed in 25.8.10 or later.

ExtremeControl for Site Engine:

  • Fixed in 25.8.10 or later

ExtremeCloud IQ Controller (IQC/XCC):

  • Fixed in 10.14.04 or later
  • Fixed in 10.15.02 or later
  • Fixed in 10.17.01 or later

 

Please see the full security advisory article here for more details and future updates. 

0 Kudos
Popular Articles
GTM-P2G8KFN