XStream is an open source Java class library that is mainly used to serialize objects to XML (JSON) or deserialize them to objects.XStream 1.4.17 and earlier versions have an arbitrary code execution vulnerability that can be exploited by attackers to cause a denial of service.

CPENameOperatorVersion
xstream xstreamle1.4.17

CPE	Name	Operator	Version
	xstream xstream	le	1.4.17

prion 1

redhatcve 1

ubuntucve 1

osv 5

nvd 1

ibm 9

debiancve 1

cvelist 1

veracode 1

cve 1

github 1

amazon 1

openvas 10

debian 4

nessus 10

suse 2

redhat 6

mageia 1

ubuntu 1

oraclelinux 1

fedora 3

oracle 3

prion

Design/Logic Flaw

2021-08-23 19:15:00

redhatcve

CVE-2021-39140

2021-08-25 18:58:45

ubuntucve

CVE-2021-39140

2021-08-23 00:00:00

osv

CVE-2021-39140

2021-08-23 19:15:10

XStream can cause a Denial of Service

2021-08-25 14:48:39

libxstream-java vulnerabilities

2023-03-13 10:57:59

nvd

CVE-2021-39140

2021-08-23 19:15:10

ibm

Security Bulletin: Due to the use of XStream, IBM Tivoli Netcool Configuration Manager is vulnerable to denial of service (CVE-2021-39140)

2023-01-24 15:08:37

Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in XStream

2021-10-01 06:19:43

Security Bulletin: IBM InfoSphere Information Server is affected by multiple vulnerabilities in XStream

2022-04-27 23:05:41

debiancve

CVE-2021-39140

2021-08-23 19:15:10

cvelist

CVE-2021-39140 XStream can cause a Denial of Service

2021-08-23 18:15:13

veracode

Denial Of Service

2021-08-24 09:12:35

cve

CVE-2021-39140

2021-08-23 19:15:10

github

XStream can cause a Denial of Service

2021-08-25 14:48:39

amazon

Important: xstream

2021-12-08 16:28:00

openvas

SUSE: Security Advisory (SUSE-SU-2021:3476-1)

2021-10-21 00:00:00

Mageia: Security Advisory (MGASA-2021-0474)

2022-01-28 00:00:00

Ubuntu: Security Advisory (USN-5946-1)

2023-03-13 00:00:00

debian

[SECURITY] [DLA 2769-1] libxstream-java security update

2021-09-29 23:28:17

[SECURITY] [DSA 5004-1] libxstream-java security update

2021-11-10 20:29:25

[SECURITY] [DSA 5004-1] libxstream-java security update

2021-11-10 20:29:25

nessus

RHEL 7 : xstream (RHSA-2021:3956)

2021-10-26 00:00:00

openSUSE 15 Security Update : xstream (openSUSE-SU-2021:3476-1)

2021-10-21 00:00:00

Amazon Linux 2 : xstream (ALAS-2021-1729)

2021-12-10 00:00:00

suse

Security update for xstream (important)

2021-10-31 00:00:00

Security update for xstream (important)

2021-10-20 00:00:00

redhat

(RHSA-2021:3956) Important: xstream security update

2021-10-25 06:30:03

(RHSA-2022:0296) Critical: Red Hat Process Automation Manager 7.12.0 security update

2022-01-26 15:49:06

(RHSA-2022:0297) Moderate: Red Hat Decision Manager 7.12.0 security update

2022-01-26 16:28:59

mageia

Updated xstream/xmlpull/mxparser packages fix security vulnerability

2021-10-13 22:39:52

ubuntu

XStream vulnerabilities

2023-03-13 00:00:00

oraclelinux

xstream security update

2021-10-25 00:00:00

fedora

[SECURITY] Fedora 33 Update: xstream-1.4.18-2.fc33

2021-10-12 23:47:14

[SECURITY] Fedora 34 Update: xstream-1.4.18-2.fc34

2021-10-12 23:45:05

[SECURITY] Fedora 35 Update: xstream-1.4.18-2.fc35

2021-10-29 23:18:39

oracle

Oracle Critical Patch Update Advisory - July 2022

2022-07-19 00:00:00

Oracle Critical Patch Update Advisory - January 2022

2022-01-18 00:00:00

Oracle Critical Patch Update Advisory - April 2022

2022-04-19 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.018 Low

EPSS

Percentile

88.1%

JSON

Related for CNVD-2021-67829