XStream is an open source Java class library that is mainly used to serialize objects to XML (JSON) or deserialize them to objects.XStream 1.4.17 and earlier versions have an arbitrary code execution vulnerability that can be exploited by attackers to cause arbitrary code execution.
CPE | Name | Operator | Version |
---|---|---|---|
xstream xstream | le | 1.4.17 |