Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Eclipse Subscribe
Filtered by product Equinox
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-41033 1 Eclipse 1 Equinox 2021-09-24 6.8 MEDIUM 8.1 HIGH
In all released versions of Eclipse Equinox, at least until version 4.21 (September 2021), installation can be vulnerable to man-in-the-middle attack if using p2 repos that are HTTP; that can then be exploited to serve incorrect p2 metadata and entirely alter the local installation, particularly by installing plug-ins that may then run malicious code.