MiracleLinux 4 : eclipse-3.6.1-6.13.AXS4 (AXSA:2011-432:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2011-432:01 advisory. The Eclipse platform is designed for building integrated development environments IDEs, server-side applications, desktop applications, and everything in...

EUVD-2020-19738

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2020-27225

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In versions 4.18 and earlier of the Eclipse Platform, the Help Subsystem does not authenticate active help requests to the local help web server, allowing an...

Fedora: Security Advisory for ecj (FEDORA-2024-129d8ca6fc)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 40 Update: hawtjni-1.18-12.fc40

HawtJNI is a code generator that produces the JNI code needed to implement java native methods. It is based on the jnigen code generator that is part of the SWT Tools project which is used to generate all the JNI code which powers the eclipse platform...

net.enilink.komma:net.enilink.komma.common.ui.rcp (>=1.4.0 <=1.7.4), net.enilink.komma:net.enilink.komma.edit.ui.feature (>=1.4.2 <=1.7.4) +69 more potentially affected by CVE-2023-4218 via org.eclipse.platform:org.eclipse.ui.ide (>=3.13.0 <=3.21.0)

org.eclipse.platform:org.eclipse.ui.ide MAVEN version =3.13.0, =1.4.0, =1.4.2, =1.4.0, =1.4.2, =1.4.0, =1.3.2, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.2.0 and more Source cves: CVE-2023-4218 Source advisory: OSV:GHSA-J24H-XCPC-9JW8...

org.eclipse.platform:org.eclipse.sdk (>=4.26.0 <=4.28.0) potentially affected by CVE-2023-4218 via org.eclipse.platform:org.eclipse.platform (>=4.26.0 <=4.28.0)

org.eclipse.platform:org.eclipse.platform MAVEN version =4.26.0, =4.26.0, =4.28.0 Source cves: CVE-2023-4218 Source advisory: OSV:GHSA-J24H-XCPC-9JW8...

SUSE CVE-2020-27225

In versions 4.18 and earlier of the Eclipse Platform, the Help Subsystem does not authenticate active help requests to the local help web server, allowing an unauthenticated local attacker to issue active help commands to the associated Eclipse Platform process or Eclipse Rich Client Platform...

OESA-2022-1759 eclipse security update

The Eclipse platform is designed for building integrated development environments IDEs, server-side applications, desktop applications, and everything in between. Security Fixes: In versions 4.18 and earlier of the Eclipse Platform, the Help Subsystem does not authenticate active help requests to...

PT-2022-11358 · Eclipse · Eclipse P2

Name of the Vulnerable Software and Affected Versions: Eclipse p2 affected versions not specified Description: The issue concerns the Eclipse p2 installable units, which can alter the Eclipse Platform installation and the local machine via touchpoints during installation. These touchpoints can...

eclipse: Help Subsystem does not authenticate active help requests

It was found that the Eclipse Platform does not authenticate requests to the Help subsystem on the local web server. A local attacker could use this vulnerability to disrupt the Eclipse user's session, potentially causing Eclipse to damage or disclose data owned by that user...

CVE-2020-27225

It was found that the Eclipse Platform does not authenticate requests to the Help subsystem on the local web server. A local attacker could use this vulnerability to disrupt the Eclipse user's session, potentially causing Eclipse to damage or disclose data owned by that user...

Eclipse Platform Unauthorized Access Vulnerability

Eclipse Platform is Eclipse open source defines a set of frameworks and public services that together form the infrastructure needed to support the use of Eclipse as a component model , Rich Client Platform RCP and a comprehensive tool integration platform . Project model for managing resources ,...

CVE-2020-27225

In versions 4.18 and earlier of the Eclipse Platform, the Help Subsystem does not authenticate active help requests to the local help web server, allowing an unauthenticated local attacker to issue active help commands to the associated Eclipse Platform process or Eclipse Rich Client Platform...

CVE-2020-27225

In versions 4.18 and earlier of the Eclipse Platform, the Help Subsystem does not authenticate active help requests to the local help web server, allowing an unauthenticated local attacker to issue active help commands to the associated Eclipse Platform process or Eclipse Rich Client Platform...

UBUNTU-CVE-2020-27225

In versions 4.18 and earlier of the Eclipse Platform, the Help Subsystem does not authenticate active help requests to the local help web server, allowing an unauthenticated local attacker to issue active help commands to the associated Eclipse Platform process or Eclipse Rich Client Platform...

Design/Logic Flaw

In versions 4.18 and earlier of the Eclipse Platform, the Help Subsystem does not authenticate active help requests to the local help web server, allowing an unauthenticated local attacker to issue active help commands to the associated Eclipse Platform process or Eclipse Rich Client Platform...

CVE-2020-27225

In versions 4.18 and earlier of the Eclipse Platform, the Help Subsystem does not authenticate active help requests to the local help web server, allowing an unauthenticated local attacker to issue active help commands to the associated Eclipse Platform process or Eclipse Rich Client Platform...

CVE-2020-27225

CVE-2020-27225 affects the Eclipse Platform (versions 4.18 and earlier). The vulnerability stems from the Help Subsystem not authenticating active help requests to the local help web server, allowing a local, unauthenticated attacker to issue active help commands to the Eclipse Platform process o...

CVE-2020-27225

In versions 4.18 and earlier of the Eclipse Platform, the Help Subsystem does not authenticate active help requests to the local help web server, allowing an unauthenticated local attacker to issue active help commands to the associated Eclipse Platform process or Eclipse Rich Client Platform...