Vulnerabilities

CVE-2019-10248

by Fred · 22/04/2019

Eclipse Vorto versions prior to 0.11 resolved Maven build artifacts for the Xtext project over HTTP instead of HTTPS. Any of these dependent artifacts could have been maliciously compromised by a MITM attack. Hence produced build artifacts of Vorto might be infected.

Date published : 2019-04-22

https://bugs.eclipse.org/bugs/show_bug.cgi?id=546622

Similar

Tags: Cybersecurity Alert