Lucene search
+L

6 matches found

CNVD
CNVD
added 2021/08/23 12:0 a.m.23 views

XStream Denial of Service Vulnerability (CNVD-2021-67829)

XStream is an open source Java class library that is mainly used to serialize objects to XML JSON or deserialize them to objects.XStream 1.4.17 and earlier versions have an arbitrary code execution vulnerability that can be exploited by attackers to cause a denial of service...

6.5CVSS6AI score0.05918EPSS
Exploits1References1
CNVD
CNVD
added 2021/08/23 12:0 a.m.25 views

XStream Arbitrary Code Execution Vulnerability (CNVD-2021-67817)

XStream is an open source Java class library that is mainly used to serialize objects to XML JSON or deserialize them to objects.XStream 1.4.17 and earlier versions have an arbitrary code execution vulnerability that can be exploited by attackers to cause arbitrary code execution...

8.5CVSS6.4AI score0.04735EPSS
Exploits1References1
CNVD
CNVD
added 2021/08/23 12:0 a.m.36 views

XStream Arbitrary Code Execution Vulnerability (CNVD-2021-67820)

XStream is an open source Java class library that is mainly used to serialize objects to XML JSON or deserialize them to objects.XStream 1.4.17 and earlier versions have an arbitrary code execution vulnerability that can be exploited by attackers to cause arbitrary code execution...

8.5CVSS6.4AI score0.04735EPSS
Exploits1References1
CNVD
CNVD
added 2021/05/21 12:0 a.m.11 views

XStream Remote Code Execution Vulnerability (CNVD-2021-49071)

XStream is a Java class library , mainly used to serialize Java objects into XML or deserialized into objects that can be handled by the object type is almost unlimited . A remote code execution vulnerability exists in XStream versions 1.4.16 and earlier. The vulnerability stems from the fact tha...

8.8CVSS7.6AI score0.77735EPSS
Exploits1References1
CNVD
CNVD
added 2021/05/19 12:0 a.m.5 views

Denial of Service Vulnerability in XStream

XStream is an open source Java class library developed by the XStream team , it is mainly used to serialize objects into XML JSON or deserialized into objects . A denial of service vulnerability exists in Xstream. An attacker can exploit the vulnerability to cause a denial of service attack...

7AI score
Exploits0
CNVD
CNVD
added 2020/12/15 12:0 a.m.15 views

XStream SSRF Vulnerability

XStream is a Java class library , used to serialize objects into XML or deserialize objects , XStream is free software can be distributed in the BSD license learning . XStream SSRF vulnerability, an attacker can exploit this vulnerability by specifying the demand request url in xml can be SSRF...

6.8CVSS6.6AI score0.82392EPSS
Exploits5References1
Rows per page
Query Builder