Security Advisory

CVE-2020-27225

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-03-09 18:15:16

Last updated 2024-08-04 16:11:36

Assigner eclipse

State PUBLISHED

Description

In versions 4.18 and earlier of the Eclipse Platform, the Help Subsystem does not authenticate active help requests to the local help web server, allowing an unauthenticated local attacker to issue active help commands to the associated Eclipse Platform process or Eclipse Rich Client Platform process.

← Browse all CVEs View on cve.org ↗