3 matches found
CVE-2019-10240
Eclipse hawkBit versions prior to 0.3.0M2 resolved Maven build artifacts for the Vaadin based UI over HTTP instead of HTTPS. Any of these dependent artifacts could have been maliciously compromised by a MITM attack. Hence produced build artifacts of hawkBit might be infected...
CVE-2019-10240
Eclipse hawkBit versions prior to 0.3.0M2 resolved Maven build artifacts for the Vaadin based UI over HTTP instead of HTTPS. Any of these dependent artifacts could have been maliciously compromised by a MITM attack. Hence produced build artifacts of hawkBit might be infected...
CVE-2019-10240
Eclipse hawkBit is affected: versions prior to 0.3.0M2 resolved Maven build artifacts for the Vaadin-based UI over HTTP instead of HTTPS, creating a MITM risk where dependent artifacts could be compromised and infected. Multiple sources (RH, OSV, NVD, Gemein) corroborate that build artifacts may ...