Lucene search
K

1634 matches found

openvas
openvas
added 2014/02/25 12:0 a.m.33 views

Fedora Update for xstream FEDORA-2014-2340

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.3AI score0.84362EPSS
Exploits5References2
ptsecurity
ptsecurity
added 2014/02/25 12:0 a.m.3 views

PT-2019-7010 · Thoughtworks · Xstream Api

Name of the Vulnerable Software and Affected Versions: Xstream API versions up to 1.4.6 Xstream API version 1.4.10 Description: The issue allows a remote attacker to execute arbitrary shell commands by manipulating the processed input stream when unmarshaling XML or any supported format, such as...

9.8CVSS8.2AI score0.84362EPSS
Exploits5References34
nessus
nessus
added 2014/02/23 12:0 a.m.30 views

Fedora 20 : xstream-1.3.1-9.fc20 (2014-2372)

This update fixes remote code execution security vulnerability by applying backported upstream patch. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as...

9.8CVSS8.7AI score0.84362EPSS
Exploits5References3
nessus
nessus
added 2014/02/23 12:0 a.m.44 views

Fedora 19 : xstream-1.3.1-5.1.fc19 (2014-2340)

This update fixes remote code execution security vulnerability by applying backported upstream patch. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as...

9.8CVSS8.7AI score0.84362EPSS
Exploits5References3
fedora
fedora
added 2014/02/22 12:56 a.m.35 views

[SECURITY] Fedora 19 Update: xstream-1.3.1-5.1.fc19

XStream is a simple library to serialize objects to XML and back again. A high level facade is supplied that simplifies common use cases. Custom objects can be serialized without need for specifying mappings. Speed and low memory footprint are a crucial part of the design, making it suitable for...

9.8CVSS0.4AI score0.84362EPSS
Exploits5
fedora
fedora
added 2014/02/22 12:47 a.m.35 views

[SECURITY] Fedora 20 Update: xstream-1.3.1-9.fc20

XStream is a simple library to serialize objects to XML and back again. A high level facade is supplied that simplifies common use cases. Custom objects can be serialized without need for specifying mappings. Speed and low memory footprint are a crucial part of the design, making it suitable for...

9.8CVSS0.4AI score0.84362EPSS
Exploits5
nessus
nessus
added 2014/01/22 12:0 a.m.20 views

Sonatype Nexus < 2.7.1 'XStream' Object Remote Code Execution Vulnerability

Binary data 8084.prm...

7.5CVSS7.3AI score0.02812EPSS
Exploits0References4
securityvulns
securityvulns
added 2011/07/06 12:0 a.m.249 views

Spring Source OXM Remote OS Command Injection when XStream and IBM JRE are used

Reference: http://static.springsource.org/spring/docs/3.0.x/spring-framework-reference/html/oxm.htmld0e26722 Product: Spring Source OXM Object/XML Mapping Vendor: VMware Vulnerable Version: 3.0.4 only when XStream and IBM JRE are used Status: Fixed Vendor Notification: 12 October 2010 Vendor Fix:...

1.4AI score
Exploits0
packetstorm
packetstorm
added 2011/07/03 12:0 a.m.49 views

Spring Source OXM 3.0.4 Command Injection

Reference: http://static.springsource.org/spring/docs/3.0.x/spring-framework-reference/html/oxm.htmld0e26722 Product: Spring Source OXM Object/XML Mapping Vendor: VMware Vulnerable Version: 3.0.4 only when XStream and IBM JRE are used Status: Fixed Vendor Notification: 12 October 2010 Vendor Fix:...

0.1AI score
Exploits0
thn
thn
added 2010/12/05 2:21 a.m.14 views

JavaSnoop-1.0 FINAL - Latest Release

"JavaSnoop is a tool that lets you intercept methods, alter data and otherwise hack Java applications running on your computer." This is the change log for the current release: Added granular logging on the agent still controlled by the main UI menu Fixed Jython/BeanShell bug had to remove...

6.4AI score
Exploits0
debiancve
debiancve
added 1976/01/01 12:0 a.m.25 views

CVE-2022-40156

Removed by vendor...

8.6AI score
Exploits0
debiancve
debiancve
added 1976/01/01 12:0 a.m.30 views

CVE-2022-40155

Removed by vendor...

8.6AI score
Exploits0
debiancve
debiancve
added 1976/01/01 12:0 a.m.32 views

CVE-2022-40153

Removed by vendor...

8.6AI score
Exploits0
debiancve
debiancve
added 1976/01/01 12:0 a.m.37 views

CVE-2022-40154

Removed by vendor...

8.6AI score
Exploits0
Rows per page
Query Builder