Every CVE whose affected-product data names Eclipse Che, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2019-17633 — CVSS 8.8 (high): For Eclipse Che versions 6.16 to 7.3.0, with both authentication and TLS disabled, visiting a malicious web site could trigger the start of…
CVE-2021-41034 — CVSS 8.1 (high): The build of some language stacks of Eclipse Che version 6 includes pulling some binaries from an unsecured HTTP endpoint. As a consequence…
CVE-2020-14368 — CVSS 7.1 (high): A flaw was found in Eclipse Che in versions prior to 7.14.0 that impacts CodeReady Workspaces. When configured with cookies authentication…
CVE-2020-10689 — CVSS 6.4 (medium): A flaw was found in the Eclipse Che up to version 7.8.x, where it did not properly restrict access to workspace pods. An authenticated user…