| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2021-21348 | XStream is vulnerable to an attack using Regular Expression for a Denial of Service (ReDos) | x-stream | xstream | Medium | 5.3 | 2021-03-22 23:45:29 | Deep Dive |
| CVE-2021-21349 | A Server-Side Forgery Request can be activated unmarshalling with XStream to access data streams from an arbitrary URL referencing a resource in an intranet or the local host | x-stream | xstream | Medium | 6.1 | 2021-03-22 23:45:24 | Deep Dive |
| CVE-2021-21350 | XStream is vulnerable to an Arbitrary Code Execution attack | x-stream | xstream | Medium | 5.3 | 2021-03-22 23:45:20 | Deep Dive |
| CVE-2021-21351 | XStream is vulnerable to an Arbitrary Code Execution attack | x-stream | xstream | Medium | 5.4 | 2021-03-22 23:45:15 | Deep Dive |
| CVE-2021-21341 | XStream can cause a Denial of Service | x-stream | xstream | High | 7.5 | 2021-03-22 23:40:44 | Deep Dive |
| CVE-2021-21342 | A Server-Side Forgery Request can be activated unmarshalling with XStream to access data streams from an arbitrary URL referencing a resource in an intranet or the local host | x-stream | xstream | Medium | 5.3 | 2021-03-22 23:40:39 | Deep Dive |
| CVE-2021-21343 | XStream is vulnerable to an Arbitrary File Deletion on the local host when unmarshalling as long as the executing process has sufficient rights | x-stream | xstream | Medium | 5.3 | 2021-03-22 23:40:34 | Deep Dive |
| CVE-2021-21344 | XStream is vulnerable to an Arbitrary Code Execution attack | x-stream | xstream | Medium | 5.3 | 2021-03-22 23:40:29 | Deep Dive |
| CVE-2021-21345 | XStream is vulnerable to a Remote Command Execution attack | x-stream | xstream | Medium | 5.8 | 2021-03-22 23:40:25 | Deep Dive |
| CVE-2021-21346 | XStream is vulnerable to an Arbitrary Code Execution attack | x-stream | xstream | Medium | 6.1 | 2021-03-22 23:40:20 | Deep Dive |
| CVE-2021-21347 | XStream is vulnerable to an Arbitrary Code Execution attack | x-stream | xstream | Medium | 6.1 | 2021-03-22 23:40:13 | Deep Dive |
| CVE-2020-27254 | X-STREAM enhanced XEGP 授权问题漏洞 | - | Emerson Rosemount X-STREAM Gas Analyzer | 高危 | - | 2020-12-21 17:04:24 | Deep Dive |
| CVE-2020-26258 | Server-Side Forgery Request can be activated unmarshalling with XStream | x-stream | xstream | Medium | 6.3 | 2020-12-16 01:05:22 | Deep Dive |
| CVE-2020-26259 | XStream is vulnerable to an Arbitrary File Deletion on the local host when unmarshalling | x-stream | xstream | Medium | 6.8 | 2020-12-16 01:05:16 | Deep Dive |
| CVE-2020-26217 | Remote Code Execution in XStream | x-stream | xstream | High | 8.0 | 2020-11-16 21:00:18 | Deep Dive |
| CVE-2020-11024 | Man-in-the-middle attack in Moonlight iOS/tvOS | moonlight-stream | Moonlight | Medium | 6.1 | 2020-04-29 20:55:13 | Deep Dive |
| CVE-2020-7603 | closure-compiler-stream 注入漏洞 | - | closure-compiler-stream | 超危 | - | 2020-03-15 21:48:52 | Deep Dive |
| CVE-2020-7943 | Puppet和PuppetDB 信息泄露漏洞 | - | Puppet Enterprise 2018.1.x stream | 高危 | - | 2020-03-11 21:56:41 | Deep Dive |
| CVE-2017-16084 | list-n-stream 路径遍历漏洞 | HackerOne | list-n-stream node module | 高危 | - | 2018-06-07 02:00:00 | Deep Dive |