Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 16, 2026, noon
NVD Vulnerability Information
Update Date:June 16, 2026, 4:13 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 200051 | 8.6 |
HIGH
Network |
xstream_project debian fedoraproject oracle |
xstream debian_linux fedora banking_platform webcenter_portal communications_unified_inventory_management communications_policy_management banking_virtual_account_management c… |
XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.16, there is a vulnerability which may allow a remote attacker to request data from internal resour… | - | CVE-2021-21349 | 2024-11-21 14:48 | 2021-03-23 | Show | GitHub Exploit DB Packet Storm |
| 200052 | 7.5 |
HIGH
Network |
xstream_project debian fedoraproject oracle |
xstream debian_linux fedora banking_platform webcenter_portal communications_unified_inventory_management communications_policy_management banking_virtual_account_management c… |
XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.16, there is a vulnerability which may allow a remote attacker to occupy a thread that consumes max… |
CWE-400
Uncontrolled Resource Consumption |
CVE-2021-21348 | 2024-11-21 14:48 | 2021-03-23 | Show | GitHub Exploit DB Packet Storm |
| 200053 | 9.8 |
CRITICAL
Network |
xstream_project debian fedoraproject oracle |
xstream debian_linux fedora banking_platform weblogic_server webcenter_portal communications_unified_inventory_management communications_policy_management banking_virtual_acco… |
XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.16, there is a vulnerability which may allow a remote attacker to load and execute arbitrary code f… | - | CVE-2021-21347 | 2024-11-21 14:48 | 2021-03-23 | Show | GitHub Exploit DB Packet Storm |
| 200054 | 9.8 |
CRITICAL
Network |
xstream_project debian fedoraproject oracle |
xstream debian_linux fedora banking_platform webcenter_portal bi_publisher communications_unified_inventory_management communications_policy_management banking_virtual_account… |
XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.16, there is a vulnerability which may allow a remote attacker to load and execute arbitrary code f… | - | CVE-2021-21346 | 2024-11-21 14:48 | 2021-03-23 | Show | GitHub Exploit DB Packet Storm |
| 200055 | 9.9 |
CRITICAL
Network |
xstream_project debian fedoraproject oracle |
xstream debian_linux fedora banking_platform webcenter_portal communications_unified_inventory_management communications_policy_management peoplesoft_enterprise_peopletools ba… |
XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.16, there is a vulnerability which may allow a remote attacker who has sufficient rights to execute… |
CWE-78
OS Command |
CVE-2021-21345 | 2024-11-21 14:48 | 2021-03-23 | Show | GitHub Exploit DB Packet Storm |
| 200056 | 9.8 |
CRITICAL
Network |
xstream_project debian fedoraproject oracle |
xstream debian_linux fedora banking_platform webcenter_portal communications_unified_inventory_management communications_policy_management banking_virtual_account_management c… |
XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.16, there is a vulnerability which may allow a remote attacker to load and execute arbitrary code f… | - | CVE-2021-21344 | 2024-11-21 14:48 | 2021-03-23 | Show | GitHub Exploit DB Packet Storm |
| 200057 | 7.5 |
HIGH
Network |
xstream_project debian fedoraproject oracle |
xstream debian_linux fedora banking_platform webcenter_portal communications_unified_inventory_management communications_policy_management banking_virtual_account_management c… |
XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.16, there is a vulnerability where the processed stream at unmarshalling time contains type informa… | - | CVE-2021-21343 | 2024-11-21 14:48 | 2021-03-23 | Show | GitHub Exploit DB Packet Storm |
| 200058 | 9.1 |
CRITICAL
Network |
xstream_project debian fedoraproject oracle |
xstream debian_linux fedora banking_platform webcenter_portal communications_unified_inventory_management communications_policy_management banking_virtual_account_management b… |
XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.16, there is a vulnerability where the processed stream at unmarshalling time contains type informa… | - | CVE-2021-21342 | 2024-11-21 14:48 | 2021-03-23 | Show | GitHub Exploit DB Packet Storm |
| 200059 | 7.5 |
HIGH
Network |
xstream_project debian fedoraproject oracle |
xstream debian_linux fedora banking_platform webcenter_portal communications_unified_inventory_management communications_billing_and_revenue_management_elastic_charging_engine bu… |
XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.16, there is vulnerability which may allow a remote attacker to allocate 100% CPU time on the targe… | - | CVE-2021-21341 | 2024-11-21 14:48 | 2021-03-23 | Show | GitHub Exploit DB Packet Storm |
| 200060 | 4.3 |
MEDIUM
Network |
otrs |
faq otrs |
Agents are able to see linked FAQ articles without permissions (defined in FAQ Category). This issue affects: FAQ version 6.0.29 and prior versions, OTRS version 7.0.24 and prior versions. |
CWE-276
Incorrect Default Permissions |
CVE-2021-21438 | 2024-11-21 14:48 | 2021-03-22 | Show | GitHub Exploit DB Packet Storm |