Jgit

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest

CVE-2025-4949 Maven MEDIUM POC PATCH This Week

In Eclipse JGit versions 7.2.0.202503040940-r and older, the ManifestParser class used by the repo command and the AmazonS3 class used to implement the experimental amazons3 git transport protocol. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

XXE Information Disclosure Denial Of Service Jgit Red Hat +1

NVD

CVSS 4.0

6.8

EPSS

0.2%

CVE-2025-4949 Maven

EPSS 0% CVSS 6.8

MEDIUM POC PATCH This Week

In Eclipse JGit versions 7.2.0.202503040940-r and older, the ManifestParser class used by the repo command and the AmazonS3 class used to implement the experimental amazons3 git transport protocol. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

XXE Information Disclosure Denial Of Service +3

NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy