Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2021-0651

Malware in sbrugna...

8.6CVSS6.8AI score0.06747EPSS
Exploits1References33
IBM Security Bulletins
IBM Security Bulletinsadded 2021/04/13 9:10 p.m.62 views

Security Bulletin: XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.16, there is a vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating

Summary XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.16, there is a vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stream. Vulnerability Details Refer t...

9.9CVSS4.6AI score0.92EPSS
Exploits10Affected Software1
NVD
NVDadded 2021/03/23 12:15 a.m.25 views

CVE-2021-21345

XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.16, there is a vulnerability which may allow a remote attacker who has sufficient rights to execute commands of the host only by manipulating the processed input stream. No user is affected, who...

9.9CVSS0.88091EPSS
Exploits1References16
UbuntuCve
UbuntuCveadded 2021/03/23 12:15 a.m.31 views

CVE-2021-21344

XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.16, there is a vulnerability which may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stream. No user is affected, who follow...

9.8CVSS7AI score0.30602EPSS
Exploits1References7
Tenable Nessus
Tenable Nessusadded 2021/01/04 12:0 a.m.42 views

Debian DLA-2507-1 : libxstream-java security update

Several security vulnerabilities were discovered in XStream, a Java library to serialize objects to XML and back again. CVE-2020-26258 XStream is vulnerable to a Server-Side Forgery Request which can be activated when unmarshalling. The vulnerability may allow a remote attacker to request data fr...

7.7CVSS7.5AI score0.9368EPSS
Exploits7References5
NVD
NVDadded 2020/12/16 1:15 a.m.26 views

CVE-2020-26258

XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.15, a Server-Side Forgery Request vulnerability can be activated when unmarshalling. The vulnerability may allow a remote attacker to request data from internal resources that are not publicly...

7.7CVSS7.7AI score0.9368EPSS
Exploits4References14
UbuntuCve
UbuntuCveadded 2020/12/16 1:15 a.m.35 views

CVE-2020-26259

XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.15, is vulnerable to an Arbitrary File Deletion on the local host when unmarshalling. The vulnerability may allow a remote attacker to delete arbitrary know files on the host as log as the executin...

6.8CVSS6.8AI score0.8887EPSS
Exploits5References6
OSV
OSVadded 2016/06/06 12:0 a.m.16 views

DLA-504-1 libxstream-java - security update

Bulletin has no description...

7.5CVSS7.5AI score0.04224EPSS
Exploits0
Rows per page
Query Builder