Lucene search
Veracode Vulnerability DatabaseVERACODE:21440HistorySep 06, 2019 - 6:11 a.m.
Man-in-the-Middle (MitM)
2019-09-0606:11:37
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
9
EPSS
0.001
Percentile
28.7%
spotless-eclipse-groovy, spotless-eclipse-cdt and spotless-eclipse-wtp is vulnerable to man-in-the-middle (MitM). The build files in the project resolve dependencies over an insecure HTTP channel. A remote attacker could potentially modify and include malicious code in the build artifacts. Should the JAR files be compromised, the attacker will be able to execute arbitrary code on the developers’ systems.
Related
github
github
Incorrect Resource Transfer Between Spheres in eclipse-wtp
2019-09-11 23:08:57
osv
osv
CVE-2019-10753
2019-09-05 20:15:11
Incorrect Resource Transfer Between Spheres in eclipse-wtp
2019-09-11 23:08:57
cvelist
cvelist
CVE-2019-10753
2019-09-05 19:45:24
ubuntucve
ubuntucve
CVE-2019-10753
2019-09-05 00:00:00
debiancve
debiancve
CVE-2019-10753
2019-09-05 20:15:11
nvd
nvd
CVE-2019-10753
2019-09-05 20:15:11
prion
prion
Design/Logic Flaw
2019-09-05 20:15:00
cve
cve
CVE-2019-10753
2019-09-05 20:15:11