CVE-2021-39153

2021-08-2318:15:13

CWE-434

CWE-502

[email protected]

web.nvd.nist.gov

166

xstream

vulnerability

remote code execution

input stream manipulation

cve-2021-39153

nvd

java runtime

8.8 High

AI Score

Confidence

High

0.025 Low

EPSS

Percentile

90.0%

JSON

CPENameOperatorVersion
xstream_project:xstreamxstream project xstreamlt1.4.18
fedoraproject:fedorafedoraproject fedoraeq33
fedoraproject:fedorafedoraproject fedoraeq34
fedoraproject:fedorafedoraproject fedoraeq35
debian:debian_linuxdebian debian linuxeq9.0
debian:debian_linuxdebian debian linuxeq10.0
debian:debian_linuxdebian debian linuxeq11.0
netapp:snapmanagernetapp snapmanagereq-
oracle:business_activity_monitoringoracle business activity monitoringeq12.2.1.4.0
oracle:communications_billing_and_revenue_management_elastic_charging_engineoracle communications billing and revenue management elastic charging engineeq11.3

CPE	Name	Operator	Version
xstream_project:xstream	xstream project xstream	lt	1.4.18
fedoraproject:fedora	fedoraproject fedora	eq	33
fedoraproject:fedora	fedoraproject fedora	eq	34
fedoraproject:fedora	fedoraproject fedora	eq	35
debian:debian_linux	debian debian linux	eq	9.0
debian:debian_linux	debian debian linux	eq	10.0
debian:debian_linux	debian debian linux	eq	11.0
netapp:snapmanager	netapp snapmanager	eq	-
oracle:business_activity_monitoring	oracle business activity monitoring	eq	12.2.1.4.0
oracle:communications_billing_and_revenue_management_elastic_charging_engine	oracle communications billing and revenue management elastic charging engine	eq	11.3