Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
eclipse vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2019-17637
In all versions of Eclipse Web Tools Platform through release 3.18 (2020-06), XML and DTD files referring to external entities could be exploited to send the contents of local files to a remote server when edited or validated, even when external entity resolution is disabled in t...
Eclipse Web Tools Platform
Debian Debian Linux 9.0
5.8
CVSSv2
CVE-2019-17636
In Eclipse Theia versions 0.3.9 up to and including 0.15.0, one of the default pre-packaged Theia extensions is "Mini-Browser", published as "@theia/mini-browser" on npmjs.com. This extension, for its own needs, exposes a HTTP endpoint that allows to read the ...
Eclipse Theia
5.8
CVSSv2
CVE-2019-11774
before 0.1, all builds of Eclipse OMR contain a bug where the loop versioner may fail to privatize a value that is pulled out of the loop by versioning - for example if there is a condition that is moved out of the loop that reads a field we may not privatize the value of that fi...
Eclipse Omr
5.8
CVSSv2
CVE-2019-11775
All builds of Eclipse OpenJ9 before 0.15 contain a bug where the loop versioner may fail to privatize a value that is pulled out of the loop by versioning - for example if there is a condition that is moved out of the loop that reads a field we may not privatize the value of that...
Eclipse Openj9
Redhat Satellite 5.8
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Workstation 6.0
Redhat Enterprise Linux Workstation 7.0
5.8
CVSSv2
CVE-2012-2159
Open redirect vulnerability in IBM Eclipse Help System (IEHS), as used in IBM Security AppScan Source 7.x and 8.x prior to 8.6 and IBM SPSS Data Collection Developer Library 6.0 and 6.0.1, allows remote malicious users to redirect users to arbitrary web sites and conduct phishing...
Ibm Security Appscan Source 8.0.0.1
Ibm Security Appscan Source 8.0.0.2
Ibm Security Appscan Source 7.0
Ibm Security Appscan Source 8.0
Ibm Security Appscan Source 8.5
Ibm Security Appscan Source 8.5.0.1
Ibm Spss Data Collection 6.0.1
Ibm Spss Data Collection 6.0
5.5
CVSSv2
CVE-2019-11778
If an MQTT v5 client connects to Eclipse Mosquitto versions 1.6.0 to 1.6.4 inclusive, sets a last will and testament, sets a will delay interval, sets a session expiry interval, and the will delay interval is set longer than the session expiry interval, then a use after free erro...
Eclipse Mosquitto
5.5
CVSSv2
CVE-2014-0950
Multiple XML external entity (XXE) vulnerabilities in (1) CQWeb / CM Server, (2) ClearQuest Native client, (3) ClearQuest Eclipse client, and (4) ClearQuest Eclipse Designer components in IBM Rational ClearQuest 7.1.1 up to and including 7.1.1.9, 7.1.2 up to and including 7.1.2.1...
Ibm Rational Clearquest
5.1
CVSSv2
CVE-2006-6493
Buffer overflow in the krbv4_ldap_auth function in servers/slapd/kerberos.c in OpenLDAP 2.4.3 and previous versions, when OpenLDAP is compiled with the --enable-kbind (Kerberos KBIND) option, allows remote malicious users to execute arbitrary code via an LDAP bind request using t...
Openldap Openldap 1.0.3
Openldap Openldap 1.1
Openldap Openldap 1.1.0
Openldap Openldap 1.2.1
Openldap Openldap 1.2.10
Openldap Openldap 1.2.5
Openldap Openldap 1.2.6
Openldap Openldap 2.0.11
Openldap Openldap 2.0.11 11
Openldap Openldap 2.0.16
Openldap Openldap 2.0.17
Openldap Openldap 2.0.23
Openldap Openldap 2.0.24
Openldap Openldap 2.0.7
Openldap Openldap 2.0.8
Openldap Openldap 2.1.15
Openldap Openldap 2.1.16
Openldap Openldap 2.1.22
Openldap Openldap 2.1.23
Openldap Openldap 2.1.30
Openldap Openldap 2.1.4
Openldap Openldap 2.2.0
1 EDB exploit
5
CVSSv2
CVE-2022-2048
In Eclipse Jetty HTTP/2 server implementation, when encountering an invalid HTTP/2 request, the error handling has a bug that can wind up not properly cleaning up the active connections and associated resources. This can lead to a Denial of Service scenario where there are no eno...
Eclipse Jetty
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Snapcenter -
Netapp Hci Compute Node -
Netapp Solidfire \\& Hci Storage Node -
Netapp Element Plug-in For Vcenter Server -
Netapp Management Services For Element Software And Netapp Hci -
Jenkins Jenkins
5
CVSSv2
CVE-2022-2191
In Eclipse Jetty versions 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, SslConnection does not release ByteBuffers from configured ByteBufferPool in case of error code paths.
Eclipse Jetty
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3201
CVE-2024-4779
CVE-2024-35090
CVE-2024-5084
hard-coded
CVE-2024-4985
HTML injection
CVE-2024-33655
local file inclusion
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »