Retail xstore point of service

This hub aggregates every CVE we track for Retail xstore point of service, a product in the databases space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Retail xstore point of service.

• CVE-2020-10650A deserialization flaw was discovered in jackson-databind through 2.9.10.4. It could allow an unauthenticated user to perform code execution via ignite-jta or quartz-core: org.apache.ignite.cache.j...8.1Dec 26, 2022
• CVE-2022-22965A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding. The specific exploit requires the application to run on Tomcat as a W...KEV9.8Apr 1, 2022
• CVE-2022-22963In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, when using routing functionality it is possible for a user to provide a specially crafted SpEL as a routing-expression...KEV9.8Apr 1, 2022
• CVE-2021-43859Denial of Service by injecting highly recursive collections or maps in XStream7.5Feb 1, 2022
• CVE-2021-44832Apache Log4j2 vulnerable to RCE via JDBC Appender when attacker controls configuration6.6Dec 28, 2021
• CVE-2021-39150A Server-Side Forgery Request vulnerability in XStream via PriorityQueue unmarshaling8.5Aug 23, 2021
• CVE-2021-39152A Server-Side Forgery Request vulnerability in XStream via HashMap unmarshaling8.5Aug 23, 2021
• CVE-2021-39140XStream can cause a Denial of Service6.5Aug 23, 2021
• CVE-2021-39149XStream is vulnerable to an Arbitrary Code Execution attack8.5Aug 23, 2021
• CVE-2021-39148XStream is vulnerable to an Arbitrary Code Execution attack8.5Aug 23, 2021
• CVE-2021-39147XStream is vulnerable to an Arbitrary Code Execution attack8.5Aug 23, 2021
• CVE-2021-39146XStream is vulnerable to an Arbitrary Code Execution attack8.5Aug 23, 2021
• CVE-2021-39145XStream is vulnerable to an Arbitrary Code Execution attack8.5Aug 23, 2021
• CVE-2021-39141XStream is vulnerable to an Arbitrary Code Execution attack8.5Aug 23, 2021
• CVE-2021-39151XStream is vulnerable to an Arbitrary Code Execution attack8.5Aug 23, 2021