Lucene search
+L

63 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-3123

Malware in sbrugna...

6.8CVSS6.6AI score0.00752EPSS
Exploits1References4
euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-6509

Malware in sbrugna...

7.1CVSS6.9AI score0.00507EPSS
Exploits1References2
euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-7945

Malware in sbrugna...

8.8CVSS8.8AI score0.00811EPSS
Exploits1References2
euvd
euvd
added 2025/10/03 8:7 p.m.7 views

EUVD-2021-28187

Malicious code in bioql PyPI...

8.1CVSS8.1AI score0.0039EPSS
Exploits0References1
redhat
redhat
added 2025/09/15 4:27 p.m.5 views

Important: Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.23.0 Release.

Red Hat OpenShift Dev Spaces 3.23.0 has been released. Red Hat OpenShift Dev Spaces provides a cloud developer workspace server and a browser-based IDE built for teams and organizations. Dev Spaces runs in OpenShift and is well-suited for container-based development. The 3.23 release is based on...

9.1CVSS6.7AI score0.011EPSS
Exploits2References14
redhatcve
redhatcve
added 2025/05/22 10:2 a.m.10 views

CVE-2019-17633

For Eclipse Che versions 6.16 to 7.3.0, with both authentication and TLS disabled, visiting a malicious web site could trigger the start of an arbitrary Che workspace. Che with no authentication and no TLS is not usually deployed on a public network but is often used for local installations e.g. ...

8.8CVSS6.8AI score0.00811EPSS
Exploits1References1
redhat
redhat
added 2025/04/16 2:48 a.m.24 views

Important: Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.20.0 release

Red Hat OpenShift Dev Spaces 3.20 has been released. All containers have been updated to include feature enhancements, bug fixes and CVE fixes. Red Hat OpenShift Dev Spaces provides a cloud developer workspace server and a browser-based IDE built for teams and organizations. Dev Spaces runs in...

7.5CVSS6.7AI score0.02186EPSS
Exploits2References5
redhat
redhat
added 2025/03/13 4:40 p.m.17 views

Moderate: Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.19.0 release

Red Hat OpenShift Dev Spaces 3.19 has been released. All containers have been updated to include feature enhancements, bug fixes and CVE fixes. Following the Red Hat Product Security standards this update is rated as having a security impact of Important. The Common Vulnerability Scoring System...

7.2CVSS6.5AI score0.00381EPSS
Exploits0References3
redhat
redhat
added 2024/11/25 7:44 p.m.38 views

Important: Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.17.0 release

Red Hat OpenShift Dev Spaces 3.17 has been released. All containers have been updated to include feature enhancements, bug fixes and CVE fixes. This includes fixes to Critical CVE-2024-21534. Following the Red Hat Product Security standards this update is rated as having a security impact of...

10CVSS7.1AI score0.09076EPSS
Exploits7References10
redhat
redhat
added 2024/09/12 9:30 p.m.32 views

Important: Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.16.0 release

Red Hat OpenShift Dev Spaces 3.16 has been released. All containers have been updated to include feature enhancements, bug fixes and CVE fixes. Following the Red Hat Product Security standards this update is rated as having a security impact of Important. The Common Vulnerability Scoring System...

8.8CVSS6.7AI score0.01939EPSS
Exploits3References2
redhat
redhat
added 2024/07/18 5:11 p.m.82 views

Important: Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.15.0 release

Red Hat OpenShift Dev Spaces 3.15 has been released. All containers have been updated to include feature enhancements, bug fixes and CVE fixes. Following the Red Hat Product Security standards this update is rated as having a security impact of Important. The Common Vulnerability Scoring System...

8.8CVSS7.2AI score0.99999EPSS
Exploits24References13
vulnersosv
vulnersosv
added 2022/05/13 1:14 a.m.7 views

org.eclipse.che.lib:che-tomcat8-slf4j-logback (>=6.10.0 <=7.2.0), org.eclipse.che:assembly-main (>=6.10.0 <=7.2.0) +2 more potentially affected by CVE-2016-8735 via org.apache.tomcat:tomcat-catalina-jmx-remote (>=8.5.23 <=8.5.46)

org.apache.tomcat:tomcat-catalina-jmx-remote MAVEN version =8.5.23, =6.10.0, =6.10.0, =6.10.0, =12.0, =12.7 Source cves: CVE-2016-8735 Source advisory: OSV:GHSA-CW54-59PW-4G8C...

9.8CVSS7AI score0.90338EPSS
Exploits1
bdu_fstec
bdu_fstec
added 2021/10/22 12:0 a.m.9 views

The vulnerability of the Java Eclipse Che development environment server, related to the lack of message integrity checking, allows attackers to carry out “man-in-the-middle” attacks.

The vulnerability of the Java Eclipse Che development environment server is related to the lack of integrity checks for messages. Exploiting this vulnerability allows a remote attacker to perform “man-in-the-middle” attacks...

8.1CVSS7.5AI score0.0039EPSS
Exploits0References2Affected Software1
nvd
nvd
added 2021/09/29 10:15 p.m.15 views

CVE-2021-41034

The build of some language stacks of Eclipse Che version 6 includes pulling some binaries from an unsecured HTTP endpoint. As a consequence the builds of such stacks are vulnerable to MITM attacks that allow the replacement of the original binaries with arbitrary ones. The stacks involved are Jav...

8.1CVSS0.0039EPSS
Exploits0References1
osv
osv
added 2021/09/29 10:15 p.m.17 views

CVE-2021-41034

The build of some language stacks of Eclipse Che version 6 includes pulling some binaries from an unsecured HTTP endpoint. As a consequence the builds of such stacks are vulnerable to MITM attacks that allow the replacement of the original binaries with arbitrary ones. The stacks involved are Jav...

8.1CVSS7AI score
Exploits0References1
prion
prion
added 2021/09/29 10:15 p.m.20 views

Design/Logic Flaw

The build of some language stacks of Eclipse Che version 6 includes pulling some binaries from an unsecured HTTP endpoint. As a consequence the builds of such stacks are vulnerable to MITM attacks that allow the replacement of the original binaries with arbitrary ones. The stacks involved are Jav...

6.8CVSS7.9AI score0.0039EPSS
Exploits0References1Affected Software1
attackerkb
attackerkb
added 2021/09/29 10:15 p.m.3 views

CVE-2021-41034

The build of some language stacks of Eclipse Che version 6 includes pulling some binaries from an unsecured HTTP endpoint. As a consequence the builds of such stacks are vulnerable to MITM attacks that allow the replacement of the original binaries with arbitrary ones. The stacks involved are Jav...

8.1CVSS7.4AI score0.0039EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2021/09/29 9:35 p.m.14 views

CVE-2021-41034

The build of some language stacks of Eclipse Che version 6 includes pulling some binaries from an unsecured HTTP endpoint. As a consequence the builds of such stacks are vulnerable to MITM attacks that allow the replacement of the original binaries with arbitrary ones. The stacks involved are Jav...

8.1AI score0.0039EPSS
Exploits0References1
cve
cve
added 2021/09/29 9:35 p.m.62 views

CVE-2021-41034

The CVE concerns Eclipse Che v6: builds of language stacks (Java 8 on Alpine/CentOS, Android, and PHP) pull binaries from an unsecured HTTP endpoint, enabling MITM substitution during the build process. The vulnerability affects the build-time retrieval of binaries, not runtime execution. Root ca...

8.1CVSS7.9AI score0.0039EPSS
Exploits0References1Affected Software1
cnnvd
cnnvd
added 2021/09/29 12:0 a.m.4 views

Eclipse Che 安全漏洞

Eclipse Che is an open source Java-based online integrated development environment IDE from the Eclipse Foundation. A security vulnerability exists in Eclipse Che, which stems from a security issue in the language stack build of Eclipse Che version 6. An attacker who successfully exploited the...

8.1CVSS7.9AI score0.0039EPSS
Exploits0References1
Rows per page
Query Builder