eclipse
260 tracked vulnerabilities.
CVE-2023-36478
HIGH
Eclipse Jetty <11.0.15,10.0.15,9.4.52 - Buffer Overflow
Oct 10, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-44487
HIGH
KEV
HTTP/2 - Denial of Service via Rapid Stream Reset
Oct 10, 2023
CVSS 7.5
EPSS 0.94
CVE-2023-3592
MEDIUM
Mosquitto <2.0.16 - Memory Corruption
Oct 02, 2023
CVSS 5.8
EPSS 0.00
CVE-2023-0809
MEDIUM
Eclipse Mosquitto < 2.0.16 - Denial of Service via Malicious Initial Packet
Oct 02, 2023
CVSS 5.8
EPSS 0.00
CVE-2023-4760
HIGH
Eclipse RAP 3.0.0-3.25.0 - Remote Code Execution via FileUpload Path Traversal
Sep 21, 2023
CVSS 7.6
EPSS 0.00
CVE-2023-41900
LOW
Eclipse Jetty 9.4.21-9.4.51, 10.0.15, 11.0.15 - Weak Authentication via OpenIdAuthenticator LoginService Bypass
Sep 15, 2023
CVSS 3.5
EPSS 0.00
CVE-2023-40167
MEDIUM
Jetty <9.4.52-12.0.1 - Info Disclosure
Sep 15, 2023
CVSS 5.3
EPSS 0.05
CVE-2023-36479
LOW
Eclipse Jetty 9.0.0-9.4.51, 10.0.0-10.0.15, 11.0.0-11.0.15, 12.0.0-beta0-12.0.0-beta1 - Command Injection via CgiServlet
Sep 15, 2023
CVSS 3.5
EPSS 0.01
CVE-2023-4759
HIGH
Eclipse JGit <= 6.6.0 - Arbitrary File Overwrite via Symbolic Link on Case-Insensitive Filesystem
Sep 12, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-28366
HIGH
Eclipse Mosquitto 1.3.2-2.0.15 - Memory Leak via QoS 2 Message Handling
Sep 01, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-41034
MEDIUM
Eclipse Leshan < 1.5.0 - XML External Entity Injection via DDF File Parsing
Aug 31, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-2597
HIGH
Eclipse Openj9 < 0.38.0 - Out-of-bounds Read in Shared Cache String Handling
May 22, 2023
CVSS 7.0
EPSS 0.00
CVE-2023-32081
MEDIUM
Vert.x STOMP 3.1.0-3.9.15 and 4.0.0-4.4.1 - Unauthenticated Message Subscription and Publishing
May 12, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-26049
LOW
Jetty <9.4.51 - Cookie Smuggling via Quoted Value Parsing
Apr 18, 2023
CVSS 2.4
EPSS 0.00
CVE-2023-26048
MEDIUM
Eclipse Jetty < 9.4.51 - Denial of Service via Multipart Request with Large Content
Apr 18, 2023
CVSS 5.3
EPSS 0.42
CVE-2023-0100
HIGH
Eclipse BIRT 2.6.2-4.13.0 - Server-Side Request Forgery via Report Parameter
Mar 15, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-24815
MEDIUM
Eclipse Vert.x-Web 4.0.0-4.3.7 - Path Traversal via StaticHandler on Windows
Feb 09, 2023
CVSS 4.8
EPSS 0.00
CVE-2022-2712
MEDIUM
Eclipse GlassFish 5.1.0-6.2.5 - Unauthenticated Path Traversal via Relative Path
Jan 27, 2023
CVSS 6.5
EPSS 0.01
CVE-2022-36022
MEDIUM
Deeplearning4J <1.0.0-M2.1 - Info Disclosure
Nov 10, 2022
CVSS 5.3
EPSS 0.00
CVE-2022-39368
HIGH
Eclipse Californium < 2.7.4 and 3.0.0-3.7.0 - Denial of Service via Handshake Counter Cleanup Failure
Nov 10, 2022
CVSS 8.2
EPSS 0.00
CVE-2022-3676
MEDIUM
Eclipse Openj9 < 0.35.0 - Type Confusion via Interface Call Inlining
Oct 24, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-39293
HIGH
Azure RTOS USBX < 6.1.12 - Integer Underflow in Pima Read Function
Oct 13, 2022
CVSS 8.6
EPSS 0.00
CVE-2022-36063
HIGH
eclipse/threadx_usbx < 6.1.11 - Integer Underflow and Buffer Overflow in _ux_host_class_cdc_ecm_mac_address_get
Oct 10, 2022
CVSS 7.6
EPSS 0.04
CVE-2022-25897
MEDIUM
Eclipse Milo < 0.6.8 - Denial of Service via Multiple CloseSession Requests
Sep 08, 2022
CVSS 5.9
EPSS 0.00
CVE-2022-2838
MEDIUM
Eclipse Sphinx <0.13.1 - Info Disclosure
Aug 16, 2022
CVSS 5.3
EPSS 0.00
Products
jetty 47
mosquitto 26
openj9 21
threadx_netx_duo 20
threadx_usbx 15
glassfish 12
vert.x 10
theia 7
omr 6
threadx 6
kura 5
californium 4
che 4
cyclone_data_distribution_service 4
business_intelligence_and_reporting_tools 3
eclipse_ide 3
jgit 3
memory_analyzer 3
mojarra 3
vert.x-web 3
cyclonedds 2
eclipse_dataspace_components 2
hawkbit 2
hono 2
jersey 2
keti 2
lemminx 2
open_vsx 2
openmq 2
parsson 2
Quick Filters