Количество 7
Количество 7
CVE-2022-40151
Those using Xstream to seralize XML data may be vulnerable to Denial of Service attacks (DOS). If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack.
CVE-2022-40151
Those using Xstream to seralize XML data may be vulnerable to Denial of Service attacks (DOS). If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack.
CVE-2022-40151
Those using Xstream to seralize XML data may be vulnerable to Denial of Service attacks (DOS). If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack.
CVE-2022-40151
Those using Xstream to seralize XML data may be vulnerable to Denial o ...
GHSA-f8cc-g7j8-xxpm
XStream can cause a Denial of Service by injecting deeply nested objects raising a stack overflow
BDU:2023-05607
Уязвимость Java-библиотеки для преобразования объектов в XML или JSON формат XStream, связанная с переполнением буфера на стеке, позволяющая нарушителю вызвать отказ в обслуживании
SUSE-SU-2023:1673-1
Security update for xstream
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-40151 Those using Xstream to seralize XML data may be vulnerable to Denial of Service attacks (DOS). If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack. | CVSS3: 6.5 | 0% Низкий | больше 3 лет назад |
 | CVE-2022-40151 Those using Xstream to seralize XML data may be vulnerable to Denial of Service attacks (DOS). If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack. | CVSS3: 7.5 | 0% Низкий | больше 3 лет назад |
 | CVE-2022-40151 Those using Xstream to seralize XML data may be vulnerable to Denial of Service attacks (DOS). If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack. | CVSS3: 6.5 | 0% Низкий | больше 3 лет назад |
| CVE-2022-40151 Those using Xstream to seralize XML data may be vulnerable to Denial o ... | CVSS3: 6.5 | 0% Низкий | больше 3 лет назад |
| GHSA-f8cc-g7j8-xxpm XStream can cause a Denial of Service by injecting deeply nested objects raising a stack overflow | CVSS3: 7.5 | 0% Низкий | около 3 лет назад |
 | BDU:2023-05607 Уязвимость Java-библиотеки для преобразования объектов в XML или JSON формат XStream, связанная с переполнением буфера на стеке, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 6.5 | 0% Низкий | больше 3 лет назад |
 | SUSE-SU-2023:1673-1 Security update for xstream | почти 3 года назад |
Уязвимостей на страницу