Known Vulnerabilities for products from Eclipse
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Eclipse".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-22886 json | OpenMQ exposes a TCP-based management service (imqbrokerd) that by default requires authentication. However, the product ship... | Not Provided | 2026-03-03 | 2026-04-09 |
| CVE-2026-7412 json | Not Provided | 2026-05-05 | 2026-05-06 | |
| CVE-2026-7411 json | Not Provided | 2026-05-05 | 2026-05-06 | |
| CVE-2026-6918 json | In Eclipse Open9J versions 0.21 to 0.58, a pre-authentication remote attacker can crash JITServer by sending a 32-byte crafte... | Not Provided | 2026-05-05 | 2026-05-05 |
| CVE-2026-6860 json | A TCP client can perform a TLS handshake and present the server name extension with a server name that is accepted by a serve... | Not Provided | 2026-05-06 | 2026-05-12 |
| CVE-2026-5795 json | In Eclipse Jetty, the class JASPIAuthenticator initiates the authentication checks, which set two ThreadLocal variable. Upo... | Not Provided | 2026-04-08 | 2026-04-23 |
| CVE-2026-2332 json | Not Provided | 2026-04-14 | 2026-04-15 | |
| CVE-2026-0648 json | The vulnerability stems from an incorrect error-checking logic in the CreateCounter() function (in threadx/utility/rtos_comp... | Not Provided | 2026-01-27 | 2026-04-02 |
| CVE-2025-55102 json | A denial-of-service vulnerability exists in the NetX IPv6 component functionality of Eclipse ThreadX NetX Duo. A specially cr... | Not Provided | 2026-01-27 | 2026-04-02 |
| CVE-2025-55095 json | The function _ux_host_class_storage_media_mount() is responsible for mounting partitions on a USB mass storage device. When ... | Not Provided | 2026-01-27 | 2026-04-02 |
| CVE-2024-8642 json | In Eclipse Dataspace Components, from version 0.5.0 and before version 0.9.0, the ConsumerPullTransferTokenValidationApiContr... | Not Provided | 2024-09-11 | 2026-04-29 |
| CVE-2023-54344 json | Not Provided | 2026-05-05 | 2026-05-05 | |
| CVE-2023-54342 json | Not Provided | 2026-05-05 | 2026-05-05 | |
| CVE-2023-44487 json | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many stre... | Not Provided | 2023-10-10 | 2026-05-12 |
| CVE-2023-41900 json | Jetty is a Java based web server and servlet engine. Versions 9.4.21 through 9.4.51, 10.0.15, and 11.0.15 are vulnerable to w... | 4.3 - MEDIUM | 2023-09-15 | 2023-11-10 |
| CVE-2023-41034 json | Eclipse Leshan is a device management server and client Java implementation. In affected versions DDFFileParser` and `Default... | 9.8 - CRITICAL | 2023-08-31 | 2023-09-06 |
| CVE-2023-40167 json | Jetty is a Java based web server and servlet engine. Prior to versions 9.4.52, 10.0.16, 11.0.16, and 12.0.1, Jetty accepts th... | 5.3 - MEDIUM | 2023-09-15 | 2023-10-13 |
| CVE-2023-36479 json | Eclipse Jetty Canonical Repository is the canonical repository for the Jetty project. Users of the CgiServlet with a very spe... | 4.3 - MEDIUM | 2023-09-15 | 2023-10-16 |
| CVE-2023-36478 json | Eclipse Jetty provides a web server and servlet container. In versions 11.0.0 through 11.0.15, 10.0.0 through 10.0.15, and 9.... | 7.5 - HIGH | 2023-10-10 | 2023-11-16 |
| CVE-2023-32081 json | Vert.x STOMP is a vert.x implementation of the STOMP specification that provides a STOMP server and client. From versions 3.1... | 6.5 - MEDIUM | 2023-05-12 | 2023-05-24 |
Known software with vulnerabilities from Eclipse
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Eclipse | Buildship | 3.1.1 |
| Application | Eclipse | Business Intelligence And Reporting Tools | 1.0.0 |
| Application | Eclipse | Californium | 1.0.0 |
| Application | Eclipse | Che | 4.0.0 |
| Application | Eclipse | Eclipse Ide | 1.0 |
| Application | Eclipse | Egit | - |
| Application | Eclipse | Hawkbit | 0.2.0 |
| Application | Eclipse | Hono | 0.9 |
| Application | Eclipse | Jetty | 10.0.0 |
| Application | Eclipse | Jgit | - |
| Application | Eclipse | Kura | 2.0.2 |
| Application | Eclipse | Memory Analyzer | 1.9.1 |
| Application | Eclipse | Mojarra | 1.2-20 |
| Application | Eclipse | Mosquitto | 0.1 |
| Application | Eclipse | Omr | - |
| Application | Eclipse | Openj9 | 0.0 |
| Application | Eclipse | Paho Java Client | 1.2.0 |
| Application | Eclipse | Rdf4j | 1.0.0 |
| Application | Eclipse | Theia | 0.0.1 |
| Application | Eclipse | Tinydtls | 0.8.1 |