Lucene search

K
prionPRIOn knowledge basePRION:CVE-2021-41033
HistorySep 13, 2021 - 9:15 p.m.

Code injection

2021-09-1321:15:00
PRIOn knowledge base
www.prio-n.com
11

8.3 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

47.8%

In all released versions of Eclipse Equinox, at least until version 4.21 (September 2021), installation can be vulnerable to man-in-the-middle attack if using p2 repos that are HTTP; that can then be exploited to serve incorrect p2 metadata and entirely alter the local installation, particularly by installing plug-ins that may then run malicious code.

CPENameOperatorVersion
equinoxlt4.21
equinoxeq4.21

8.3 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

47.8%

Related for PRION:CVE-2021-41033