11 matches found
Linux Distros Unpatched Vulnerability : CVE-2021-43859
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - XStream is an open source java library to serialize objects to XML and back again. Versions prior to 1.4.19 may allow a remote attacker to allocate 100% CPU tim...
SUSE CVE-2021-43859
XStream is an open source java library to serialize objects to XML and back again. Versions prior to 1.4.19 may allow a remote attacker to allocate 100% CPU time on the target system depending on CPU type or parallel execution of such a payload resulting in a denial of service only by manipulatin...
OESA-2022-2066 xstream security update
XStream is a simple library to serialize objects to XML and back again. A high level facade is supplied that simplifies common use cases. Custom objects can be serialized without need for specifying mappings. Speed and low memory footprint are a crucial part of the design,making it suitable for...
xstream: Injecting highly recursive collections or maps can cause a DoS
XStream is an open source java library to serialize objects to XML and back again. Versions prior to 1.4.19 may allow a remote attacker to allocate 100% CPU time on the target system depending on CPU type or parallel execution of such a payload resulting in a denial of service only by manipulatin...
xstream: Injecting highly recursive collections or maps can cause a DoS
XStream is an open source java library to serialize objects to XML and back again. Versions prior to 1.4.19 may allow a remote attacker to allocate 100% CPU time on the target system depending on CPU type or parallel execution of such a payload resulting in a denial of service only by manipulatin...
xstream: Injecting highly recursive collections or maps can cause a DoS
XStream is an open source java library to serialize objects to XML and back again. Versions prior to 1.4.19 may allow a remote attacker to allocate 100% CPU time on the target system depending on CPU type or parallel execution of such a payload resulting in a denial of service only by manipulatin...
OESA-2022-1512 xstream security update
Java XML serialization library. Security Fixes: XStream is an open source java library to serialize objects to XML and back again. Versions prior to 1.4.19 may allow a remote attacker to allocate 100% CPU time on the target system depending on CPU type or parallel execution of such a payload...
DEBIAN-CVE-2021-43859
XStream is an open source java library to serialize objects to XML and back again. Versions prior to 1.4.19 may allow a remote attacker to allocate 100% CPU time on the target system depending on CPU type or parallel execution of such a payload resulting in a denial of service only by manipulatin...
UBUNTU-CVE-2021-43859
XStream is an open source java library to serialize objects to XML and back again. Versions prior to 1.4.19 may allow a remote attacker to allocate 100% CPU time on the target system depending on CPU type or parallel execution of such a payload resulting in a denial of service only by manipulatin...
PT-2022-4626 · Xstream +2 · Xstream +2
Name of the Vulnerable Software and Affected Versions: XStream versions prior to 1.4.19 Description: The issue is related to an uncontrolled resource consumption in the XStream Java library, which can be exploited by a remote attacker to cause a denial of service. This can be achieved by...
XStream 资源管理错误漏洞
XStream is a lightweight, easy-to-use, open source Java class library from the XStream Xstream team that is primarily used to serialize or deserialize objects into XML JSON. XStream suffers from a Resource Management Error vulnerability that allows a remote attacker to exploit the vulnerability b...