Lucene search

CVE-2019-10240

🗓️ 03 Apr 2019 18:17:29Reported by eclipseType

Eclipse hawkBit 0.3.0M2 and earlier allows malicious compromise of build artifacts over HTT

Reporter	Title	Published	Views	Family All 7
OSV	CVE-2019-10240	3 Apr 201918:29	–	osv
OSV	Cleartext Transmission of Sensitive Information, Inclusion of Functionality from Untrusted Control Sphere , and Download of Code Without Integrity Check in Eclipse hawkBit	15 Apr 201916:19	–	osv
Cvelist	CVE-2019-10240	3 Apr 201918:04	–	cvelist
Prion	Design/Logic Flaw	3 Apr 201918:29	–	prion
NVD	CVE-2019-10240	3 Apr 201918:29	–	nvd
Veracode	Man-in-the-Middle (MitM)	4 Apr 201905:04	–	veracode
Github Security Blog	Cleartext Transmission of Sensitive Information, Inclusion of Functionality from Untrusted Control Sphere , and Download of Code Without Integrity Check in Eclipse hawkBit	15 Apr 201916:19	–	github

Nvd

Node

eclipse hawkbitRange≤0.2.5

eclipse hawkbitMatch0.3.0m1

[
  {
    "product": "Eclipse hawkBit",
    "vendor": "The Eclipse Foundation",
    "versions": [
      {
        "lessThan": "0.3.0M2",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
bugs	www.bugs.eclipse.org/bugs/show_bug.cgi

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

03 Apr 2019 18:29Current

8High risk

Vulners AI Score8

CVSS26.8

CVSS38.1

EPSS0.0017

eclipse hawkbit cve-2019-10240 security vulnerability nvd