Eclipse 漏洞

时间轴

类型

Not Defined	133
Application Server Software	2

产品

Eclipse Jetty	29
Eclipse Mosquitto	18
Eclipse OpenJ9	11
Eclipse Theia	7
Eclipse Vert.x	6

修正

Official Fix	63
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	72

易受攻击性

High	0
Functional	0
Proof-of-Concept	1
Unproven	0
Not Defined	134

访问向量

Not Defined	0
Physical	1
Local	8
Adjacent	24
Network	102

身份验证

Not Defined	0
High	4
Low	53
None	78

用户交互

Not Defined	0
Required	23
None	112

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	15
≤5	12
≤6	37
≤7	40
≤8	20
≤9	9
≤10	2

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	16
≤5	12
≤6	39
≤7	38
≤8	19
≤9	10
≤10	1

VulDB

≤1	0
≤2	0
≤3	0
≤4	27
≤5	21
≤6	48
≤7	15
≤8	22
≤9	1
≤10	1

NVD

≤1	0
≤2	0
≤3	0
≤4	1
≤5	2
≤6	12
≤7	12
≤8	31
≤9	11
≤10	20

CNA

≤1	0
≤2	0
≤3	3
≤4	2
≤5	2
≤6	4
≤7	6
≤8	8
≤9	1
≤10	0

供应商

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

零日攻击

<1k	26
<2k	85
<5k	24
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

本日攻击

<1k	130
<2k	5
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

攻击市场容量

🔴 CTI 活动

Affected Products (42): BIRT (2), Buildship (1), Californium (3), Che (3), CycloneDDS (2), Cyclone DDS (2), Equinox (1), Equinox p2 (1), GlassFish (1), Glassfish (1), Hawkbit (1), Hono (2), IDE (4), JGit (1), Jetty (29), Jetty Server (1), Keti (2), Kura (4), Leshan (1), Lyo (1), Memory Analyzer (3), Mojarra (3), Mosquito (1), Mosquitto (18), OMR (2), OpenJ9 (11), Openj9 (5), Paho MQTT C Client (1), Parsson (1), RAP (1), RDF4j (1), Sphinx (1), Theia (7), ThreadX (3), TinyDTLS (1), Vert.0 (6), Vorto (1), Wakaama (2), Web Tools Platform (1), birt (1), hawkBit (1), tinydtls (1)

已发布	Base	Temp	漏洞	Prod	易	修正	EPSS	CTI	CVE
2024-04-09	6.4	6.4	Eclipse Kura LogServlet 信息公开	未知	Not Defined	Not Defined	0.00043	0.00	CVE-2024-3046
2024-03-26	6.3	6.2	Eclipse ThreadX tx_freertos.c xQueueCreateSet 内存损坏	未知	Not Defined	Official Fix	0.00043	0.00	CVE-2024-2212
2024-03-26	6.3	6.2	Eclipse ThreadX __portable_aligned_alloc 内存损坏	未知	Not Defined	Official Fix	0.00043	0.02	CVE-2024-2452
2024-03-26	6.0	5.9	Eclipse ThreadX tx_clib_lock.c _Mtxinit 内存损坏	未知	Not Defined	Official Fix	0.00043	0.02	CVE-2024-2214
2024-02-26	6.4	6.3	Eclipse Jetty HTTP/2 SSL 拒绝服务	未知	Not Defined	Official Fix	0.00045	0.03	CVE-2024-22201
2023-12-11	4.7	4.7	Eclipse Memory Analyzer Report Definition XML External Entity	未知	Not Defined	Not Defined	0.00047	0.00	CVE-2023-6194
2023-11-15	4.7	4.6	Eclipse OpenJ9 JVM 拒绝服务	未知	Not Defined	Official Fix	0.00044	0.00	CVE-2023-5676
2023-11-09	5.7	5.5	Eclipse IDE XML External Entity	未知	Not Defined	Official Fix	0.00046	0.03	CVE-2023-4218
2023-11-03	5.7	5.7	Eclipse Parsson JSON Parser 拒绝服务	未知	Not Defined	Official Fix	0.00044	0.03	CVE-2023-4043
2023-11-03	7.8	7.7	Eclipse Glassfish JDK 权限升级	Application Server Software	Not Defined	Official Fix	0.00122	0.04	CVE-2023-5763
2023-10-18	7.5	7.3	Eclipse Mosquito Server 拒绝服务	未知	Not Defined	Official Fix	0.00044	0.00	CVE-2023-5632
2023-10-10	6.4	6.3	Eclipse Jetty MetaDataBuilder.java MetaDataBuilder.checkSize 内存损坏	未知	Not Defined	Official Fix	0.00249	0.04	CVE-2023-36478
2023-09-21	7.9	7.8	Eclipse RAP FileUpload 目录遍历	未知	Not Defined	Official Fix	0.00263	0.00	CVE-2023-4760
2023-09-15	3.6	3.6	Eclipse Jetty OpenId 弱身份验证	未知	Not Defined	Official Fix	0.00068	0.04	CVE-2023-41900
2023-09-14	3.6	3.6	Eclipse Jetty CGI Servlet 未知漏洞	未知	Not Defined	Official Fix	0.00055	0.02	CVE-2023-36479
2023-09-14	5.3	5.2	Eclipse Jetty 未知漏洞	未知	Not Defined	Official Fix	0.00060	0.02	CVE-2023-40167
2023-09-12	8.0	7.9	Eclipse JGit Remote Code Execution	未知	Not Defined	Official Fix	0.00128	0.03	CVE-2023-4759
2023-09-01	5.9	5.8	Eclipse Mosquitto QoS 2 Message 拒绝服务	未知	Not Defined	Official Fix	0.00098	0.00	CVE-2023-28366
2023-09-01	7.3	7.2	Eclipse Leshan DefaultDDFFileValidator XML External Entity	未知	Not Defined	Official Fix	0.00063	0.03	CVE-2023-41034
2023-05-22	6.9	6.8	Eclipse Openj9 String 内存损坏	未知	Not Defined	Official Fix	0.00087	0.00	CVE-2023-2597
2023-04-19	4.0	3.9	Eclipse Jetty Cookie Parser Privilege Escalation	未知	Not Defined	Official Fix	0.00118	0.02	CVE-2023-26049
2023-04-19	5.3	5.2	Eclipse Jetty Multipart Request HttpServletRequest 拒绝服务	未知	Not Defined	Official Fix	0.00184	0.02	CVE-2023-26048
2023-03-15	4.3	4.1	Eclipse BIRT 信息公开	未知	Not Defined	Official Fix	0.00061	0.02	CVE-2023-0100
2023-01-27	6.1	6.1	Eclipse GlassFish 目录遍历	Application Server Software	Not Defined	Not Defined	0.00206	0.02	CVE-2022-2712
2022-10-24	6.0	5.9	Eclipse Openj9 权限升级	未知	Not Defined	Official Fix	0.00093	0.00	CVE-2022-3676

110 更多条目未显示

🔒 Login Required

You need to signup and login to see more of the remaining 110 results.

◂ 上一步一览下一步 ▸

Do you need the next level of professionalism?

Upgrade your account now!