Every CVE whose affected-product data names Eclipse Vert.x-web, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2020-35217 — CVSS 8.8 (high): Vert.x-Web framework v4.0 milestone 1-4 does not perform a correct CSRF verification. Instead of comparing the CSRF token in the request…
CVE-2026-1002 — CVSS 5.3 (medium): The Vert.x Web static handler component cache can be manipulated to deny the access to static files served by the handler using…
CVE-2023-24815 — CVSS 4.8 (medium): Vert.x-Web is a set of building blocks for building web applications in the java programming language. When running vertx web applications…