Vulnerabilities > Oracle > Retail Xstore Point OF Service

DATE CVE VULNERABILITY TITLE RISK
2021-08-23 CVE-2021-39145 Unrestricted Upload of File with Dangerous Type vulnerability in multiple products
XStream is a simple library to serialize objects to XML and back again.
network
high complexity
xstream debian fedoraproject netapp oracle CWE-434
8.5
2021-08-23 CVE-2021-39146 Unrestricted Upload of File with Dangerous Type vulnerability in multiple products
XStream is a simple library to serialize objects to XML and back again.
network
high complexity
xstream fedoraproject debian netapp oracle CWE-434
8.5
2021-08-23 CVE-2021-39147 Unrestricted Upload of File with Dangerous Type vulnerability in multiple products
XStream is a simple library to serialize objects to XML and back again.
network
high complexity
xstream fedoraproject debian netapp oracle CWE-434
8.5
2021-08-23 CVE-2021-39148 Unrestricted Upload of File with Dangerous Type vulnerability in multiple products
XStream is a simple library to serialize objects to XML and back again.
network
high complexity
xstream fedoraproject debian netapp oracle CWE-434
8.5
2021-08-23 CVE-2021-39149 Unrestricted Upload of File with Dangerous Type vulnerability in multiple products
XStream is a simple library to serialize objects to XML and back again.
network
high complexity
xstream fedoraproject debian netapp oracle CWE-434
8.5
2021-08-23 CVE-2021-39151 Unrestricted Upload of File with Dangerous Type vulnerability in multiple products
XStream is a simple library to serialize objects to XML and back again.
network
high complexity
xstream fedoraproject debian netapp oracle CWE-434
8.5
2021-08-23 CVE-2021-39154 Unrestricted Upload of File with Dangerous Type vulnerability in multiple products
XStream is a simple library to serialize objects to XML and back again.
network
high complexity
xstream fedoraproject debian netapp oracle CWE-434
8.5
2021-07-14 CVE-2021-36373 When reading a specially crafted TAR archive an Apache Ant build can be made to allocate large amounts of memory that finally leads to an out of memory error, even for small inputs.
local
low complexity
apache oracle
5.5
2021-07-14 CVE-2021-36374 When reading a specially crafted ZIP archive, or a derived formats, an Apache Ant build can be made to allocate large amounts of memory that leads to an out of memory error, even for small inputs.
local
low complexity
apache oracle
5.5
2021-05-28 CVE-2021-29505 Deserialization of Untrusted Data vulnerability in multiple products
XStream is software for serializing Java objects to XML and back again.
network
low complexity
xstream debian fedoraproject netapp oracle CWE-502
8.8