xstream
Security Risk Profile
32
/100
lowSecurity Risk Score
Comprehensive risk assessment based on 46 vulnerabilities, EPSS scores, exploitation status, and remediation availability.
📅 Data spans from December 22, 2013 to present
46
Total CVEs
37
Critical+High
1
Exploited
2
Unpatched
Threat Assessment
Avg CVSS
7.8
Base severity
Avg EPSS
0%
Exploit probability
Unpatched
2
Critical/High
Risk Level
32/100
low
⚠️ 1 Active Exploits
Severity Distribution
Critical
10High
27Medium
8Low
0Exploit Likelihood
>50% chance
020-50%
05-20%
0<5%
0Age Distribution
Common Weaknesses (CWE)
1
Malicious File Upload
15
2
SSRF
6
3
Code Injection
5
4
OS Command Injection
4
5
Buffer Overflow
2
Most Affected Products
1. Oracle Communications Unified Inventory Management132
2. Oracle Retail Xstore Point of Service124
3. Oracle Utilities Framework103
4. Fedoraproject Fedora88
5. Debian Debian Linux88
Recent Vulnerabilities
See more →REDHAT-BUG-2324606
CVSS 7.0high
11/8/2024🔧 No Patch
RHSA-2023:2041
unknown
Important: Migration Toolkit for Applications security and bug fix update
4/27/2023
CVE-2022-41966
CVSS 8.2high
XStream Denial of Service via stack overflow
12/27/2022
REDHAT-BUG-2134288
CVSS 4.0medium
10/13/2022🔧 No Patch
REDHAT-BUG-2134290
CVSS 4.0medium
10/13/2022🔧 No Patch
REDHAT-BUG-2134289
CVSS 4.0medium
10/13/2022🔧 No Patch
REDHAT-BUG-2134292
CVSS 4.0medium
10/13/2022🔧 No Patch
REDHAT-BUG-2128959
CVSS 4.0medium
9/22/2022🔧 No Patch
CVE-2022-40152
CVSS 7.5high
Stack Buffer Overflow in Woodstox
8/11/2022
CVE-2022-40151
CVSS 7.5high
Stack Buffer Overflow in xstream
8/7/2022
Monitor xstream in Real-Time
Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.