CVE-2019-10249

CVE-2019-10249

Vendor The Eclipse Foundation
Product Eclipse Xtext
Weakness CWE-829 · Inclusion from untrusted sphere
Published May 6, 2019
Last update August 4, 2024

CVSS base score

What the vulnerability does

01Description

All Xtext & Xtend versions prior to 2.18.0 were built using HTTP instead of HTTPS file transfer and thus the built artifacts may have been compromised.

Key dates

02Disclosure timeline

May 6, 2019 CVE published
August 4, 2024 Record updated