eclipse
268 tracked vulnerabilities.
CVE-2023-48696
MEDIUM
Eclipse ThreadX USBX < 6.3.0 - CDC ACM Remote Code Execution
Dec 05, 2023
CVSS 6.7
EPSS 0.01
CVE-2023-48695
HIGH
Eclipse ThreadX USBX < 6.3.0 - CDC ECM/RNDIS Remote Code Execution
Dec 05, 2023
CVSS 7.3
EPSS 0.01
CVE-2023-48694
MEDIUM
Eclipse ThreadX USBX < 6.3.0 - Pointer and Type Confusion Code Execution
Dec 05, 2023
CVSS 6.8
EPSS 0.01
CVE-2023-5676
MEDIUM
Eclipse OpenJ9 < 0.41.0 - Denial of Service via Shutdown Signal Race Condition
Nov 15, 2023
CVSS 4.1
EPSS 0.00
CVE-2023-4218
MEDIUM
Eclipse IDE < 4.29 - XML External Entity Injection via Project File Parsing
Nov 09, 2023
CVSS 5.0
EPSS 0.00
CVE-2023-4043
MEDIUM
Eclipse Parsson <1.1.4-1.0.5 - Info Disclosure
Nov 03, 2023
CVSS 5.9
EPSS 0.01
CVE-2023-5763
MEDIUM
Eclipse Glassfish 5.0.0-6.2.4 - Remote Code Execution via Insecure ORB Listeners
Nov 03, 2023
CVSS 6.8
EPSS 0.01
CVE-2023-5632
HIGH
Eclipse Mosquitto <= 2.0.5 - Denial of Service via EPOLLOUT Event Handling
Oct 18, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-36478
HIGH
Eclipse Jetty <11.0.15,10.0.15,9.4.52 - Buffer Overflow
Oct 10, 2023
CVSS 7.5
EPSS 0.04
CVE-2023-44487
HIGH
KEV
HTTP/2 - Denial of Service via Rapid Stream Reset
Oct 10, 2023
CVSS 7.5
EPSS 1.00
CVE-2023-3592
MEDIUM
Mosquitto <2.0.16 - Memory Corruption
Oct 02, 2023
CVSS 5.8
EPSS 0.01
CVE-2023-0809
MEDIUM
Eclipse Mosquitto < 2.0.16 - Denial of Service via Malicious Initial Packet
Oct 02, 2023
CVSS 5.8
EPSS 0.01
CVE-2023-4760
HIGH
Eclipse RAP 3.0.0-3.25.0 - Remote Code Execution via FileUpload Path Traversal
Sep 21, 2023
CVSS 7.6
EPSS 0.01
CVE-2023-41900
LOW
Eclipse Jetty 9.4.21-9.4.51, 10.0.15, 11.0.15 - Weak Authentication via OpenIdAuthenticator LoginService Bypass
Sep 15, 2023
CVSS 3.5
EPSS 0.01
CVE-2023-40167
MEDIUM
Jetty <9.4.52-12.0.1 - Info Disclosure
Sep 15, 2023
CVSS 5.3
EPSS 0.01
CVE-2023-36479
LOW
Eclipse Jetty 9.0.0-9.4.51, 10.0.0-10.0.15, 11.0.0-11.0.15, 12.0.0-beta0-12.0.0-beta1 - Command Injection via CgiServlet
Sep 15, 2023
CVSS 3.5
EPSS 0.01
CVE-2023-4759
HIGH
Eclipse JGit <= 6.6.0 - Arbitrary File Overwrite via Symbolic Link on Case-Insensitive Filesystem
Sep 12, 2023
CVSS 8.8
EPSS 0.02
CVE-2023-28366
HIGH
Eclipse Mosquitto 1.3.2-2.0.15 - Memory Leak via QoS 2 Message Handling
Sep 01, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-41034
MEDIUM
Eclipse Leshan < 1.5.0 - XML External Entity Injection via DDF File Parsing
Aug 31, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-2597
HIGH
Eclipse Openj9 < 0.38.0 - Out-of-bounds Read in Shared Cache String Handling
May 22, 2023
CVSS 7.0
EPSS 0.00
CVE-2023-32081
MEDIUM
Vert.x STOMP 3.1.0-3.9.15 and 4.0.0-4.4.1 - Unauthenticated Message Subscription and Publishing
May 12, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-26049
LOW
Jetty <9.4.51 - Cookie Smuggling via Quoted Value Parsing
Apr 18, 2023
CVSS 2.4
EPSS 0.01
CVE-2023-26048
MEDIUM
Eclipse Jetty < 9.4.51 - Denial of Service via Multipart Request with Large Content
Apr 18, 2023
CVSS 5.3
EPSS 0.03
CVE-2023-0100
HIGH
Eclipse BIRT 2.6.2-4.13.0 - Server-Side Request Forgery via Report Parameter
Mar 15, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-24815
MEDIUM
Eclipse Vert.x-Web 4.0.0-4.3.7 - Path Traversal via StaticHandler on Windows
Feb 09, 2023
CVSS 4.8
EPSS 0.01
Products
jetty 47
mosquitto 26
openj9 21
threadx_netx_duo 21
threadx_usbx 15
glassfish 12
theia 11
vert.x 10
omr 6
threadx 6
kura 5
californium 4
che 4
cyclone_data_distribution_service 4
open_vsx 4
business_intelligence_and_reporting_tools 3
eclipse_ide 3
jgit 3
memory_analyzer 3
mojarra 3
vert.x-web 3
cyclonedds 2
eclipse_dataspace_components 2
hawkbit 2
hono 2
jersey 2
keti 2
lemminx 2
openmq 2
parsson 2
Quick Filters