Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Exploit for Unrestricted Upload of File with Dangerous Type in Xstream Project Xstream

🗓️ 24 Aug 2021 06:20:15Type 
githubexploit
 githubexploit👁 228 Views

Exploit for Unrestricted File Upload in Xstream Project Xstream, including CVE-2021-39141 (RCE), CVE-2021-39144 (RCE), CVE-2021-39150 (SSRF), and CVE-2021-39152 (SSRF) vulnerabilities

Show more

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Related
ReporterTitlePublishedViews
Family
IBM Security Bulletins		Security Bulletin: Due to the use of XStream, IBM Tivoli Netcool Configuration Manager is vulnerable to a SSRF attack (CVE-2021-39152, CVE-2021-39150)
24 Jan 202314:54
ibm
IBM Security Bulletins		Security Bulletin: IBM Sterling B2B Integrator is vulnerable to multiple vulnerabilities due to Xstream
13 May 202214:58
ibm
IBM Security Bulletins		Security Bulletin: Vulnerabilities in XStream affect IBM Spectrum Protect Plus
10 Dec 202120:38
ibm
IBM Security Bulletins		Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in XStream
1 Oct 202106:19
ibm
IBM Security Bulletins		Security Bulletin: IBM InfoSphere Information Server is affected by multiple vulnerabilities in XStream
27 Apr 202223:05
ibm
IBM Security Bulletins		Security Bulletin: Atlas eDiscovery Process Management is affected by a vulnerable xstream-1.4.17.jar
8 May 202308:40
ibm
IBM Security Bulletins		Security Bulletin: IBM Spectrum Control is vulnerable to multiple weaknesses related to XStream, Apache Xerces2, Jackson, OpenSSL, and Java SE
26 May 202207:31
ibm
IBM Security Bulletins		Security Bulletin: Due to use of XStream, IBM Tivoli Netcool Configuration Manager is vulnerable to arbitrary code execution attack
24 Jan 202314:30
ibm
IBM Security Bulletins		Security Bulletin: Vulnerabilities in XStream affect IBM Spectrum Copy Data Management
11 Dec 202100:37
ibm
IBM Security Bulletins		Security Bulletin: IBM Security Verify Governance is vulnerable to multiple security threats due to use of XStream
22 Nov 202216:29
ibm
Rows per page

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
24 Aug 2021 06:15Current
8.8High risk
Vulners AI Score8.8
EPSS0.94255
xstream project xstreamunrestricted file uploadexploitcve-2021-39141remote code executioncve-2021-39144cve-2021-39150server-side request forgerycve-2021-39152
228
.json
Report