Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
ApacheMaven

2 matches found

CVE
CVEadded 2021/04/23 2:20 p.m.296 views

CVE-2021-26291

CVE-2021-26291: Apache Maven could allow a remote attacker to bypass security restrictions by default non-SSL (http) repository references. Affected IBM/Bundled deployments cite this vulnerability and provide remediation paths, including upgrading Maven-driven components to versions that include ...

9.1CVSS8.2AI score0.08691EPSS
CVE
CVEadded 2013/04/09 8:0 p.m.69 views

CVE-2013-0253

CVE-2013-0253 concerns Apache Maven 3.0.4 when used with Maven Wagon 2.1, where SSL certificate checks are disabled by default. This configuration enables remote attackers to spoof servers via a man-in-the-middle (MITM) attack. The vulnerability details specify the affected components as Maven Wa...

5.8CVSS6.4AI score0.01557EPSS