pkg:Debian/libxstream-java

All known vulnerabilities

• HIGH8.5CVE-2021-39144⚠ KEVXStream is vulnerable to a Remote Command Execution attack
  from 0, < 1.4.15-3+deb11u1
• CRITICAL9.8CVE-2019-10173Deserialization of Untrusted Data and Code Injection in xstream
  from 0, < 1.4.11-1
• CRITICAL9.8CVE-2013-7285Command Injection in Xstream
  from 0, < 1.4.7-1
• HIGH8.5libxstream-java - security update
  from 0, < 1.4.15-3+deb11u1
• HIGH8.5libxstream-java - security update
  from 0, < 1.4.11.1-1+deb10u3
• HIGH8.5libxstream-java - security update
  from 0, < 1.4.11.1-1+deb9u4
• HIGH8.5XStream is vulnerable to an Arbitrary Code Execution attack
  from 0, < 1.4.15-3+deb11u1
• HIGH8.5XStream is vulnerable to an Arbitrary Code Execution attack
  from 0, < 1.4.15-3+deb11u1
• HIGH8.5XStream is vulnerable to an Arbitrary Code Execution attack
  from 0, < 1.4.15-3+deb11u1
• HIGH8.5XStream is vulnerable to an Arbitrary Code Execution attack
  from 0, < 1.4.15-3+deb11u1
• HIGH8.5XStream is vulnerable to an Arbitrary Code Execution attack
  from 0, < 1.4.15-3+deb11u1
• HIGH8.5XStream is vulnerable to an Arbitrary Code Execution attack
  from 0, < 1.4.15-3+deb11u1
• HIGH8.5A Server-Side Forgery Request can be activated unmarshalling with XStream to access data streams from an arbitrary URL referencing a resource in an intranet or the local host
  from 0, < 1.4.15-3+deb11u1
• HIGH8.5XStream is vulnerable to an Arbitrary Code Execution attack
  from 0, < 1.4.15-3+deb11u1
• HIGH8.5A Server-Side Forgery Request can be activated unmarshalling with XStream to access data streams from an arbitrary URL referencing a resource in an intranet or the local host
  from 0, < 1.4.15-3+deb11u1
• HIGH8.5XStream is vulnerable to an Arbitrary Code Execution attack
  from 0, < 1.4.15-3+deb11u1
• HIGH8.5XStream is vulnerable to an Arbitrary Code Execution attack
  from 0, < 1.4.15-3+deb11u1
• HIGH8.2libxstream-java - security update
  from 0, < 1.4.15-3+deb11u2
• HIGH8.2libxstream-java - security update
  from 0, < 1.4.15-3+deb11u2
• HIGH8.2libxstream-java - security update
  from 0, < 1.4.11.1-1+deb10u4
• HIGH8.0libxstream-java - security update
  from 0, < 1.4.11.1-1+deb10u1
• HIGH8.0libxstream-java - security update
  from 0, < 1.4.9-2+deb9u1
• HIGH8.0libxstream-java - security update
  from 0, < 1.4.14-1
• HIGH7.5XStream is vulnerable to a Denial of Service attack due to stack overflow from a manipulated binary input stream
  from 0, < 1.4.15-3+deb11u3
• HIGH7.5XStream can cause a Denial of Service by injecting deeply nested objects raising a stack overflow
  from 0
• HIGH7.5libxstream-java - security update
  from 0, < 1.4.15-3+deb11u3
• HIGH7.5libxstream-java - security update
  from 0, < 1.4.15-3+deb11u3
• HIGH7.5libxstream-java - security update
  from 0, < 1.4.11.1-1+deb9u5
• HIGH7.5libxstream-java - security update
  from 0, < 1.4.11.1-1+deb9u3
• HIGH7.5libxstream-java - security update
  from 0, < 1.4.15-3
• HIGH7.5libxstream-java - security update
  from 0, < 1.4.11.1-1+deb9u2
• HIGH7.5libxstream-java - security update
  from 0, < 1.4.15-2
• HIGH7.5libxstream-java - security update
  from 0, < 1.4.2-1+deb7u2
• HIGH7.5libxstream-java - security update
  from 0, < 1.4.7-2+deb8u2
• HIGH7.5libxstream-java - security update
  from 0, < 1.4.9-2
• HIGH7.5libxstream-java - security update
  from 0, < 1.4.9-1
• HIGH7.5libxstream-java - security update
  from 0, < 1.4.7-2+deb8u1
• HIGH7.5libxstream-java - security update
  from 0, < 1.4.2-1+deb7u1
• MEDIUM6.8XStream vulnerable to an Arbitrary File Deletion on the local host when unmarshalling
  from 0, < 1.4.15-1
• MEDIUM6.5XStream can cause a Denial of Service
  from 0, < 1.4.15-3+deb11u1
• MEDIUM6.3libxstream-java - security update
  from 0, < 1.4.11.1-1+deb9u1
• MEDIUM6.3libxstream-java - security update
  from 0, < 1.4.15-1
• MEDIUM6.3libxstream-java - security update
  from 0, < 1.4.11.1-1+deb10u2
• MEDIUM6.1A Server-Side Forgery Request can be activated unmarshalling with XStream to access data streams from an arbitrary URL referencing a resource in an intranet or the local host
  from 0, < 1.4.15-2
• MEDIUM6.1XStream is vulnerable to an Arbitrary Code Execution attack
  from 0, < 1.4.15-2
• MEDIUM6.1XStream is vulnerable to an Arbitrary Code Execution attack
  from 0, < 1.4.15-2
• MEDIUM5.8XStream is vulnerable to a Remote Command Execution attack
  from 0, < 1.4.15-2
• MEDIUM5.4XStream is vulnerable to an Arbitrary Code Execution attack
  from 0, < 1.4.15-2
• MEDIUM5.3XStream is vulnerable to an Arbitrary Code Execution attack
  from 0, < 1.4.15-2
• MEDIUM5.3XStream is vulnerable to an attack using Regular Expression for a Denial of Service (ReDos)
  from 0, < 1.4.15-2
• MEDIUM5.3XStream is vulnerable to an Arbitrary Code Execution attack
  from 0, < 1.4.15-2
• MEDIUM5.3XStream is vulnerable to an Arbitrary File Deletion on the local host when unmarshalling as long as the executing process has sufficient rights
  from 0, < 1.4.15-2
• MEDIUM5.3A Server-Side Forgery Request can be activated unmarshalling with XStream to access data streams from an arbitrary URL referencing a resource in an intranet or the local host
  from 0, < 1.4.15-2