eclipse

260 tracked vulnerabilities.

CVE-2024-9202 MEDIUM
Eclipse Dataspace Components 0.1.3-0.9.0 - Missing Authorization in Dataset Resolver
Sep 27, 2024
CVSS 5.3
EPSS 0.01
CVE-2024-8646 MEDIUM
Eclipse Glassfish <7.0.10 - Open Redirect
Sep 11, 2024
CVSS 6.1
EPSS 0.01
CVE-2024-8642 HIGH
Eclipse Dataspace Components <0.9.0 - Auth Bypass
Sep 11, 2024
CVSS 8.1
EPSS 0.00
CVE-2024-8391 HIGH
Eclipse Vert.x <4.5.9 - Info Disclosure
Sep 04, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-3933 MEDIUM
Eclipse OpenJ9 0.13.0-0.43.0 - Out-of-bounds Read and Write via Concurrent Scavenge Garbage Collection
May 27, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-5165 MEDIUM
Eclipse Ditto 3.0.0-3.5.5 - Reflected and Stored Cross-Site Scripting in Explorer UI
May 23, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-4536 MEDIUM
Eclipse EDC Connector 0.2.1-0.6.2 - OAuth2 Client Secret Exposure via Data Sink Configuration
May 07, 2024
CVSS 6.8
EPSS 0.00
CVE-2024-0740 CRITICAL
Eclipse Target Management <= 4.5.400 - Unauthenticated Remote Code Execution
Apr 26, 2024
CVSS 9.8
EPSS 0.09
CVE-2024-3046 HIGH
Eclipse Kura 5.0.0-5.4.1 - Unauthenticated Log Retrieval and Privilege Escalation via LogServlet
Apr 09, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-2452 HIGH
Eclipse ThreadX NetX Duo <6.4.0 - Buffer Overflow
Mar 26, 2024
CVSS 7.0
EPSS 0.00
CVE-2024-2214 HIGH
Eclipse ThreadX <6.4.0 - Memory Corruption
Mar 26, 2024
CVSS 7.0
EPSS 0.00
CVE-2024-2212 HIGH
Eclipse ThreadX <6.4.0 - Buffer Overflow
Mar 26, 2024
CVSS 7.3
EPSS 0.00
CVE-2024-22201 HIGH
Eclipse Jetty 9.3.0-9.4.53, 10.0.8-10.0.19, 12.0.0-12.0.5 - Denial of Service via HTTP/2 SSL Connection Leak
Feb 26, 2024
CVSS 7.5
EPSS 0.01
CVE-2023-7272 HIGH
Eclipse Parsson < 1.0.4 and 1.1.0-1.1.3 - Denial of Service via Deeply Nested JSON Objects
Jul 17, 2024
CVSS 8.6
EPSS 0.01
CVE-2023-6194 LOW
Eclipse Memory Analyzer <1.14.0 - Info Disclosure
Dec 11, 2023
CVSS 2.8
EPSS 0.00
CVE-2023-48698 MEDIUM
Eclipse ThreadX USBX < 6.3.0 - Expired Pointer Remote Code Execution
Dec 05, 2023
CVSS 6.8
EPSS 0.02
CVE-2023-48697 MEDIUM
Eclipse ThreadX USBX < 6.3.0 - Memory Buffer Remote Code Execution
Dec 05, 2023
CVSS 6.4
EPSS 0.03
CVE-2023-48696 MEDIUM
Eclipse ThreadX USBX < 6.3.0 - CDC ACM Remote Code Execution
Dec 05, 2023
CVSS 6.7
EPSS 0.01
CVE-2023-48695 HIGH
Eclipse ThreadX USBX < 6.3.0 - CDC ECM/RNDIS Remote Code Execution
Dec 05, 2023
CVSS 7.3
EPSS 0.02
CVE-2023-48694 MEDIUM
Eclipse ThreadX USBX < 6.3.0 - Pointer and Type Confusion Code Execution
Dec 05, 2023
CVSS 6.8
EPSS 0.07
CVE-2023-5676 MEDIUM
Eclipse OpenJ9 < 0.41.0 - Denial of Service via Shutdown Signal Race Condition
Nov 15, 2023
CVSS 4.1
EPSS 0.00
CVE-2023-4218 MEDIUM
Eclipse IDE < 4.29 - XML External Entity Injection via Project File Parsing
Nov 09, 2023
CVSS 5.0
EPSS 0.00
CVE-2023-4043 MEDIUM
Eclipse Parsson <1.1.4-1.0.5 - Info Disclosure
Nov 03, 2023
CVSS 5.9
EPSS 0.00
CVE-2023-5763 MEDIUM
Eclipse Glassfish 5.0.0-6.2.4 - Remote Code Execution via Insecure ORB Listeners
Nov 03, 2023
CVSS 6.8
EPSS 0.00
CVE-2023-5632 HIGH
Eclipse Mosquitto <= 2.0.5 - Denial of Service via EPOLLOUT Event Handling
Oct 18, 2023
CVSS 7.5
EPSS 0.00
Products
jetty 47 mosquitto 26 openj9 21 threadx_netx_duo 20 threadx_usbx 15 glassfish 12 vert.x 10 theia 7 omr 6 threadx 6 kura 5 californium 4 che 4 cyclone_data_distribution_service 4 business_intelligence_and_reporting_tools 3 eclipse_ide 3 jgit 3 memory_analyzer 3 mojarra 3 vert.x-web 3 cyclonedds 2 eclipse_dataspace_components 2 hawkbit 2 hono 2 jersey 2 keti 2 lemminx 2 open_vsx 2 openmq 2 parsson 2
Quick Filters
Critical CVEs With Exploits In CISA KEV