Description

Apache Commons Text versions prior to 1.10.0 included interpolation features that could be abused when applications passed untrusted input into the text-substitution API. Because some interpolators could trigger actions like executing commands or accessing external resources, an attacker could potentially achieve remote code execution. This vulnerability has been fully addressed in FileMaker Server 22.0.4.

INFO

Published Date :

2025-12-16T18:07:37.371Z

Last Modified :

2025-12-17T04:56:10.082Z

Source :

apple
AFFECTED PRODUCTS

The following products are affected by CVE-2025-46295 vulnerability.

Vendors Products
Apache
  • Commons Text
Claris
  • Filemaker Server
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-46295.

URL Resource
https://support.claris.com/s/answerview?anum=000049059&language=en_US cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact