Vulnerabilities > Oracle > Communications Unified Inventory Management > Critical

DATE CVE VULNERABILITY TITLE RISK
2019-07-23 CVE-2019-10173 Code Injection vulnerability in multiple products
It was found that xstream API version 1.4.10 before 1.4.11 introduced a regression for a previous deserialization flaw.
network
low complexity
xstream-project oracle CWE-94
critical
 9.8
9.8