Com.thoughtworks.xstream:xstream
This hub aggregates every CVE we track for Com.thoughtworks.xstream:xstream, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
37
CVEs tracked
2
Critical
21
High
1
In CISA KEV
Severity distribution
HIGH21MEDIUM14CRITICAL2
Monthly trend
0
0
0
0
1
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Com.thoughtworks.xstream:xstream.
- CVE-2024-47072XStream is vulnerable to a Denial of Service attack due to stack overflow from a manipulated binary input stream7.5
- CVE-2022-41966XStream Denial of Service via stack overflow 8.2
- CVE-2022-40151Stack Buffer Overflow in xstream6.5
- CVE-2021-43859Denial of Service by injecting highly recursive collections or maps in XStream7.5
- CVE-2021-39150A Server-Side Forgery Request vulnerability in XStream via PriorityQueue unmarshaling8.5
- CVE-2021-39152A Server-Side Forgery Request vulnerability in XStream via HashMap unmarshaling8.5
- CVE-2021-39140XStream can cause a Denial of Service6.5
- CVE-2021-39149XStream is vulnerable to an Arbitrary Code Execution attack8.5
- CVE-2021-39148XStream is vulnerable to an Arbitrary Code Execution attack8.5
- CVE-2021-39147XStream is vulnerable to an Arbitrary Code Execution attack8.5
- CVE-2021-39146XStream is vulnerable to an Arbitrary Code Execution attack8.5
- CVE-2021-39145XStream is vulnerable to an Arbitrary Code Execution attack8.5
- CVE-2021-39141XStream is vulnerable to an Arbitrary Code Execution attack8.5
- CVE-2021-39153XStream is vulnerable to an Arbitrary Code Execution attack8.5
- CVE-2021-39151XStream is vulnerable to an Arbitrary Code Execution attack8.5
Product normalization is registry-driven with AI assist and human review. How it works