14 lines
984 B
JSON
14 lines
984 B
JSON
{
|
|
"id": "openEuler-SA-2022-1759",
|
|
"url": "https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2022-1759",
|
|
"title": "An update for eclipse is now available for openEuler-20.03-LTS-SP1,openEuler-20.03-LTS-SP3 and openEuler-22.03-LTS",
|
|
"severity": "Important",
|
|
"description": "The Eclipse platform is designed for building integrated development environments (IDEs), server-side applications, desktop applications, and everything in between.\r\n\r\nSecurity Fix(es):\r\n\r\nIn versions 4.18 and earlier of the Eclipse Platform, the Help Subsystem does not authenticate active help requests to the local help web server, allowing an unauthenticated local attacker to issue active help commands to the associated Eclipse Platform process or Eclipse Rich Client Platform process.(CVE-2020-27225)",
|
|
"cves": [
|
|
{
|
|
"id": "CVE-2020-27225",
|
|
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27225",
|
|
"severity": "Important"
|
|
}
|
|
]
|
|
} |