Article - CS382331
Vulnerabilities are reported for XStream of Adobe Experience Manager Forms bundled in Creo View Adapter 9.0.0.0
Modified: 18-Apr-2023
Applies To
- Windchill PDMLink 12.0.2.5
- Creo View Adapters 6.1 to 9.0
Description
- Vulnerabilities are reported for XStream of Adobe Experience Manager Forms bundled in Creo View Adapter 9.0.0.0
- CVE-2021-39139 XStream is vulnerable to an Arbitrary Code Execution attack.
- CVE-2021-39140 XStream can cause a Denial of Service.
- CVE-2021-39141 XStream is vulnerable to an Arbitrary Code Execution attack.
- CVE-2021-39144 XStream is vulnerable to a Remote Command Execution attack.
- CVE-2021-39145 XStream is vulnerable to an Arbitrary Code Execution attack.
- CVE-2021-39146 XStream is vulnerable to an Arbitrary Code Execution attack.
- CVE-2021-39147 XStream is vulnerable to an Arbitrary Code Execution attack.
- CVE-2021-39148 XStream is vulnerable to an Arbitrary Code Execution attack.
- CVE-2021-39149 XStream is vulnerable to an Arbitrary Code Execution attack.
- CVE-2021-39150 A Server-Side Forgery Request can be activated unmarshalling with XStream to access data streams from an arbitrary URL referencing a resource in an intranet or the local host.
- CVE-2021-39151 XStream is vulnerable to an Arbitrary Code Execution attack.
- CVE-2021-39152 A Server-Side Forgery Request can be activated unmarshalling with XStream to access data streams from an arbitrary URL referencing a resource in an intranet or the local host.
- CVE-2021-39153 XStream is vulnerable to an Arbitrary Code Execution attack.
- CVE-2021-39154 XStream is vulnerable to an Arbitrary Code Execution attack.
This is a printer-friendly version of Article 382331 and may be out of date. For the latest version click CS382331