XStream is vulnerable to an Arbitrary Code Execution attack
Description
XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stream. No user is affected, who followed the recommendation to setup XStream's security framework with a whitelist limited to the minimal required types. XStream 1.4.18 uses no longer a blacklist by default, since it cannot be secured for general purpose.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
XStream before 1.4.18 allows unauthenticated remote attackers to achieve arbitrary code execution via manipulated XML input when no security framework whitelist is configured.
Vulnerability
XStream versions up to and including 1.4.17 are vulnerable to an arbitrary code execution attack when processing XML streams [1][2]. The bug resides in the unmarshalling logic, which reconstructs objects based on type information embedded in the input. An attacker can craft a malicious XML payload containing type references and serialized objects that trigger deserialization of attacker-controlled bytecode. The vulnerability is reachable when the application has not configured XStream's security framework with a whitelist of permitted types; the default setup in affected versions uses a blacklist approach, which is insufficient for securing general-purpose deserialization [1][2].
Exploitation
An attacker needs only to submit a crafted XML input to an application that uses XStream to deserialize data. No authentication, special network position, or prior user interaction is required. The exploit payload, provided in the advisory, consists of a LinkedHashSet containing a dynamic proxy with a CompositeInvocationHandlerImpl and a DTraceProbe that references a malicious TemplatesImpl object [2]. When the stream is unmarshalled, XStream creates these objects, triggering loading and execution of bytecodes (e.g., a Java class) from the remote attacker-controlled server [2].
Impact
Successful exploitation results in remote code execution (RCE) with the privileges of the application process. The attacker can load and execute arbitrary code from a remote host, leading to full compromise of confidentiality, integrity, and availability of the affected system [1][2].
Mitigation
Users must upgrade to XStream version 1.4.18, which changes the default security configuration to a whitelist model, blocking the vulnerability [1][2]. Alternatively, administrators can apply the security framework's whitelist recommendation to limit permitted types, which also prevents the attack [2]. No workaround is needed for users already employing a strict whitelist. Fedora package updates were announced for affected distributions [3][4].
AI Insight generated on May 21, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
com.thoughtworks.xstream:xstreamMaven | < 1.4.18 | 1.4.18 |
Affected products
6- ghsa-coords5 versionspkg:maven/com.thoughtworks.xstream/xstreampkg:rpm/suse/xstream&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP2pkg:rpm/suse/xstream&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP3pkg:rpm/suse/xstream&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/xstream&distro=SUSE%20Manager%20Server%20Module%204.2
< 1.4.18+ 4 more
- (no CPE)range: < 1.4.18
- (no CPE)range: < 1.4.18-3.14.1
- (no CPE)range: < 1.4.18-3.14.1
- (no CPE)range: < 1.4.18-3.14.1
- (no CPE)range: < 1.4.18-3.14.1
- x-stream/xstreamv5Range: < 1.4.18
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
17- github.com/advisories/GHSA-3ccq-5vw3-2p6xghsaADVISORY
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/22KVR6B5IZP3BGQ3HPWIO2FWWCKT3DHP/mitrevendor-advisoryx_refsource_FEDORA
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PVPHZA7VW2RRSDCOIPP2W6O5ND254TU7/mitrevendor-advisoryx_refsource_FEDORA
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QGXIU3YDPG6OGTDHMBLAFN7BPBERXREB/mitrevendor-advisoryx_refsource_FEDORA
- nvd.nist.gov/vuln/detail/CVE-2021-39149ghsaADVISORY
- www.debian.org/security/2021/dsa-5004ghsavendor-advisoryx_refsource_DEBIANWEB
- github.com/x-stream/xstream/security/advisories/GHSA-3ccq-5vw3-2p6xghsax_refsource_CONFIRMWEB
- lists.debian.org/debian-lts-announce/2021/09/msg00017.htmlghsamailing-listx_refsource_MLISTWEB
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/22KVR6B5IZP3BGQ3HPWIO2FWWCKT3DHPghsaWEB
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PVPHZA7VW2RRSDCOIPP2W6O5ND254TU7ghsaWEB
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QGXIU3YDPG6OGTDHMBLAFN7BPBERXREBghsaWEB
- security.netapp.com/advisory/ntap-20210923-0003ghsaWEB
- security.netapp.com/advisory/ntap-20210923-0003/mitrex_refsource_CONFIRM
- www.oracle.com/security-alerts/cpuapr2022.htmlghsax_refsource_MISCWEB
- www.oracle.com/security-alerts/cpujan2022.htmlghsax_refsource_MISCWEB
- www.oracle.com/security-alerts/cpujul2022.htmlghsax_refsource_MISCWEB
- x-stream.github.io/CVE-2021-39149.htmlghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.