Homepage

xstream vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the xstream package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • H
Stack-based Buffer Overflow

<1.4.21-150200.3.28.1
  • H
Uncontrolled Recursion

<1.4.20-150200.3.25.1
  • M
Out-of-bounds Write

<1.4.20-150200.3.25.1
  • M
Server-Side Request Forgery (SSRF)

<1.4.15-3.3.2
  • H
OS Command Injection

<1.4.15-3.3.2
  • M
OS Command Injection

<1.4.15-3.3.2
  • H
Unrestricted Upload of File with Dangerous Type

<1.4.16-3.8.1
  • H
Unrestricted Upload of File with Dangerous Type

<1.4.16-3.8.1
  • M
Deserialization of Untrusted Data

<1.4.16-3.8.1
  • H
Unrestricted Upload of File with Dangerous Type

<1.4.16-3.8.1
  • H
Unrestricted Upload of File with Dangerous Type

<1.4.16-3.8.1
  • M
Deserialization of Untrusted Data

<1.4.16-3.8.1
  • H
Deserialization of Untrusted Data

<1.4.16-3.8.1
  • H
Unrestricted Upload of File with Dangerous Type

<1.4.16-3.8.1
  • M
Resource Exhaustion

<1.4.16-3.8.1
  • H
OS Command Injection

<1.4.16-3.8.1
  • M
Resource Exhaustion

<1.4.16-3.8.1
  • H
Deserialization of Untrusted Data

<1.4.17-3.11.2
  • H
Unrestricted Upload of File with Dangerous Type

<1.4.18-3.14.1
  • H
Deserialization of Untrusted Data

<1.4.18-3.14.1
  • H
Unrestricted Upload of File with Dangerous Type

<1.4.18-3.14.1
  • H
Unrestricted Upload of File with Dangerous Type

<1.4.18-3.14.1
  • H
Unrestricted Upload of File with Dangerous Type

<1.4.18-3.14.1
  • H
Unrestricted Upload of File with Dangerous Type

<1.4.18-3.14.1
  • H
Unrestricted Upload of File with Dangerous Type

<1.4.18-3.14.1
  • H
Unrestricted Upload of File with Dangerous Type

<1.4.18-3.14.1
  • H
Deserialization of Untrusted Data

<1.4.18-3.14.1
  • H
Unrestricted Upload of File with Dangerous Type

<1.4.18-3.14.1
  • H
Deserialization of Untrusted Data

<1.4.18-3.14.1
  • H
Unrestricted Upload of File with Dangerous Type

<1.4.18-3.14.1
  • H
Missing Authentication for Critical Function

<1.4.18-3.14.1
  • H
Unrestricted Upload of File with Dangerous Type

<1.4.18-3.14.1
  • M
Resource Exhaustion

<1.4.19-3.18.2