Vorto
1 CVEs
product
Monthly
Eclipse Vorto versions prior to 0.11 resolved Maven build artifacts for the Xtext project over HTTP instead of HTTPS. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.
Information Disclosure
Vorto
NVD
CVSS 3.0
8.1
EPSS
0.4%
CVE-2019-10248
Maven
EPSS 0%
CVSS 8.1
HIGH
PATCH
This Week
Eclipse Vorto versions prior to 0.11 resolved Maven build artifacts for the Xtext project over HTTP instead of HTTPS. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.
Information Disclosure
Vorto
NVD