eclipse

268 tracked vulnerabilities.

CVE-2020-18735 HIGH
Eclipse IOT Cyclone DDS Project <0.1.0 - Buffer Overflow
Aug 23, 2021
CVSS 7.5
EPSS 0.02
CVE-2020-18734 HIGH
Eclipse IOT Cyclone DDS Project <0.1.0 - Buffer Overflow
Aug 23, 2021
CVSS 7.5
EPSS 0.02
CVE-2020-6950 MEDIUM NUCLEI
Eclipse Mojarra < 2.3.14 - Path Traversal via loc or con Parameter
Jun 02, 2021
CVSS 6.5
EPSS 0.10
CVE-2020-27225 HIGH
Eclipse Platform <4.18 - Info Disclosure
Mar 09, 2021
CVSS 7.8
EPSS 0.00
CVE-2020-27223 MEDIUM
Eclipse Jetty 9.4.6-9.4.36, 10.0.0, 11.0.0 - Denial of Service via Multiple Accept Headers with Quality Parameters
Feb 26, 2021
CVSS 5.2
EPSS 0.78
CVE-2020-27224 CRITICAL
Eclipse Theia <= 1.2.0 - Remote Code Execution via Markdown Preview
Feb 24, 2021
CVSS 9.6
EPSS 0.02
CVE-2020-27222 HIGH
Eclipse Californium 2.3.0-2.6.0 - Denial of Service via DTLS Handshake State Mismatch
Feb 03, 2021
CVSS 7.5
EPSS 0.01
CVE-2020-27221 CRITICAL
Eclipse OpenJ9 <0.23 - Buffer Overflow
Jan 21, 2021
CVSS 9.8
EPSS 0.02
CVE-2020-35217 HIGH
Vert.x-Web 4.0.0-milestone1-4.0.0-milestone4 - Cross-Site Request Forgery via Incorrect Token Verification
Jan 20, 2021
CVSS 8.8
EPSS 0.01
CVE-2020-27220 HIGH
Eclipse Hono - Privilege Escalation
Jan 14, 2021
CVSS 8.8
EPSS 0.01
CVE-2020-27219 MEDIUM
Eclipse Hawkbit <0.3.0M7 - Info Disclosure
Jan 14, 2021
CVSS 6.1
EPSS 0.01
CVE-2020-14368 HIGH
Eclipse Che < 7.14.0 - Cross-Site Request Forgery via SameSite Cookie Misconfiguration
Dec 14, 2020
CVSS 7.1
EPSS 0.01
CVE-2020-27218 MEDIUM
Eclipse Jetty 9.4.0-9.4.34 - Sensitive Information Exposure via GZIP Request Body Reuse
Nov 28, 2020
CVSS 4.8
EPSS 0.08
CVE-2020-27217 HIGH
Eclipse Hono 1.3.0 and 1.4.0 - Denial of Service via Oversized AMQP Message
Nov 13, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-27216 HIGH
Eclipse Jetty <9.4.32.v20200930, 10.0.0.alpha1-11.0.0.beta2 - Info ...
Oct 23, 2020
CVSS 7.0
EPSS 0.04
CVE-2020-10689 MEDIUM
Eclipse Che <7.8.x - Privilege Escalation
Apr 03, 2020
CVSS 6.4
EPSS 0.01
CVE-2019-17640 CRITICAL
Eclipse Vert.x 3.4.0-3.9.4 - Path Traversal via StaticHandler on Windows
Oct 15, 2020
CVSS 9.8
EPSS 0.02
CVE-2019-17639 MEDIUM
Eclipse OpenJ9 < 0.21 - Type Confusion via System.arraycopy
Jul 15, 2020
CVSS 5.3
EPSS 0.02
CVE-2019-17637 HIGH
Eclipse Web Tools Platform < 3.18 - XML External Entity Injection via DTD File Processing
Jul 15, 2020
CVSS 7.1
EPSS 0.01
CVE-2019-17638 CRITICAL
Eclipse Jetty <9.4.29 - Use After Free
Jul 09, 2020
CVSS 9.4
EPSS 0.11
CVE-2019-17636 HIGH
Eclipse Theia 0.3.9-0.15.0 - Unauthenticated Arbitrary File Read via Mini-Browser HTTP Endpoint
Mar 10, 2020
CVSS 8.1
EPSS 0.01
CVE-2019-17635 HIGH
Eclipse Memory Analyzer < 1.9.1 - Deserialization of Untrusted Data via Malicious Index File
Jan 17, 2020
CVSS 7.8
EPSS 0.01
CVE-2019-17634 CRITICAL
Eclipse Memory Analyzer < 1.9.1 - Stored Cross-Site Scripting via Malicious Heap Dump HTML Report
Jan 17, 2020
CVSS 9.0
EPSS 0.02
CVE-2019-17633 HIGH
Eclipse Che 6.16.0-7.3.0 - Unauthenticated Workspace Creation via CSRF
Dec 19, 2019
CVSS 8.8
EPSS 0.01
CVE-2019-17632 MEDIUM
Eclipse Jetty 9.4.21.v20190926-9.4.23.v20191118 - Cross-Site Scripting in Default Error Response
Nov 25, 2019
CVSS 6.1
EPSS 0.02