How severe is CVE-2019-10249?

CVE-2019-10249 has a CVSS v3 score of 8.1 (HIGH).

CVE-2019-10249

Name: xtext
Author: eclipse

8.1HIGH

All Xtext & Xtend versions prior to 2.18.0 were built using HTTP instead of HTTPS file transfer and thus the built artifacts may have been compromised.

Published: 5/6/2019Updated: 11/21/2024

Description

All Xtext & Xtend versions prior to 2.18.0 were built using HTTP instead of HTTPS file transfer and thus the built artifacts may have been compromised.

AI AnalysisPowered by AI

Affected Products

eclipsextend

eclipsextext

References

https://bugs.eclipse.org/bugs/show_bug.cgi?id=546996
Issue TrackingVendor Advisory
https://github.com/eclipse/xtext-xtend/issues/759
ExploitIssue TrackingThird Party Advisory
https://bugs.eclipse.org/bugs/show_bug.cgi?id=546996
Issue TrackingVendor Advisory
https://github.com/eclipse/xtext-xtend/issues/759
ExploitIssue TrackingThird Party Advisory