Org Eclipse Core Runtime
1 CVEs
product
Monthly
In Eclipse IDE versions < 2023-09 (4.29) some files with xml content are parsed vulnerable against all sorts of XXE attacks. Rated medium severity (CVSS 5.0), this vulnerability is low attack complexity. Public exploit code available.
XXE
Eclipse Ide
Org Eclipse Core Runtime
Pde
NVD
GitHub
CVSS 3.1
5.0
EPSS
0.4%
CVE-2023-4218
Maven
EPSS 0%
CVSS 5.0
MEDIUM
POC
PATCH
This Month
In Eclipse IDE versions < 2023-09 (4.29) some files with xml content are parsed vulnerable against all sorts of XXE attacks. Rated medium severity (CVSS 5.0), this vulnerability is low attack complexity. Public exploit code available.
XXE
Eclipse Ide
Org Eclipse Core Runtime
+1
NVD
GitHub