Eclipse Foundation — Vulnerabilities & Security Advisories 91

Browse all 91 CVE security advisories affecting Eclipse Foundation. AI-powered Chinese analysis, POCs, and references for each vulnerability.

CVE ID	Title	CVSS	Severity	Paused
CVE-2026-6272	kuksa.val.v2任意读JWT可伪造信号数据漏洞 — Eclipse KUKSA - DatabrokerCWE-306	7.1^AI	High^AI	2026-04-24
CVE-2026-2332	HTTP Request Smuggling via Chunked Extension Quoted-String Parsing — Eclipse JettyCWE-444	7.4	High	2026-04-14
CVE-2026-5795	Eclipse Jetty 授权问题漏洞 — Eclipse JettyCWE-226	7.4	High	2026-04-08
CVE-2026-24457	OpenMQ 安全漏洞 — Eclipse OpenMQCWE-22	9.1	Critical	2026-03-05
CVE-2026-1605	Eclipse Jetty 安全漏洞 — Eclipse JettyCWE-400	7.5	High	2026-03-05
CVE-2025-11143	Eclipse Jetty 输入验证错误漏洞 — Eclipse JettyCWE-20	3.7	Low	2026-03-05
CVE-2026-22886	OpenMQ 安全漏洞 — Eclipse OpenMQCWE-1392	9.8	Critical	2026-03-03
CVE-2026-1699	Eclipse Theia - Website 安全漏洞 — Eclipse Theia - WebsiteCWE-829	10.0	Critical	2026-01-30
CVE-2026-1188	Eclipse OMR 安全漏洞 — Eclipse OMRCWE-131	9.8^AI	Critical^AI	2026-01-29
CVE-2026-0648	Eclipse ThreadX USBX 安全漏洞 — Eclipse ThreadXCWE-253	7.8	High	2026-01-27
CVE-2025-55095	Eclipse ThreadX USBX 安全漏洞 — Eclipse ThreadX - USBXCWE-121	4.2	Medium	2026-01-27
CVE-2025-55102	Eclipse ThreadX NetX Duo 安全漏洞 — Eclipse ThreadX - NetX DuoCWE-400	7.5^AI	High^AI	2026-01-27
CVE-2025-2515	Bluechi: privilege escalation in bluechi via unrestricted cross-node systemd dependencies — BlueChiCWE-863	7.2	High	2025-12-24
CVE-2025-10543	Eclipse Paho Go MQTT v3.1 library 安全漏洞 — paho.mqtt.golang (Go MQTT v3.1 library)CWE-681	7.5^AI	High^AI	2025-12-02
CVE-2025-12383	Race Condition allows Bypass of Trust Restrictions — JerseyCWE-362	7.4^AI	High^AI	2025-11-18
CVE-2025-11965	Eclipse Vert.x 安全漏洞 — Vert.xCWE-552	7.5^AI	High^AI	2025-10-22
CVE-2025-11966	Eclipse Vert.x 安全漏洞 — Vert.xCWE-79	5.4^AI	Medium^AI	2025-10-22
CVE-2025-55086	Eclipse ThreadX NetX Duo 安全漏洞 — NextX DuoCWE-1285	9.1^AI	Critical^AI	2025-10-20
CVE-2025-55085	Web http client: Unchecked Server-Side Malicious Packet Issue — NetX DuoCWE-125	9.8^AI	Critical^AI	2025-10-17
CVE-2025-55087	Eclipse ThreadX NetX Duo 安全漏洞 — NextX DuoCWE-1285	7.1^AI	High^AI	2025-10-17
CVE-2025-55100	Potential out-of-bounds read in _ux_host_class_audio10_sam_parse_func() — USBXCWE-125	8.2^AI	High^AI	2025-10-17
CVE-2025-55099	Potential out-of-bounds read in _ux_host_class_audio_alternate_setting_locate() — USBXCWE-125	8.2^AI	High^AI	2025-10-17
CVE-2025-55098	Potential out-of-bounds read in _ux_host_class_audio_device_type_get() — USBXCWE-125	8.2^AI	High^AI	2025-10-17
CVE-2025-55097	Potential out-of-bounds read in _ux_host_class_audio_streaming_sampling_get() — USBXCWE-125	8.2^AI	High^AI	2025-10-17
CVE-2025-55096	Inadequate bounds check and potential underflow in _ux_host_class_hid_report_descriptor_get() — NetX DuoCWE-191	8.2^AI	High^AI	2025-10-17
CVE-2025-55094	Potential out-of-bounds read in _nx_icmpv6_validate_options() — NetX DuoCWE-125	5.3^AI	Medium^AI	2025-10-17
CVE-2025-55093	Out of bound read and write in _nx_ipv4_packet_receive() when handling unicast DHCP messages — NetX DuoCWE-126	9.8^AI	Critical^AI	2025-10-17
CVE-2025-55092	Potential out of bound read in _nx_ipv4_option_process() — NetX DuoCWE-125	5.3^AI	Medium^AI	2025-10-17
CVE-2025-55091	Potential out of bound read in _nx_ip_packet_receive() — NetX DuoCWE-125	8.2^AI	High^AI	2025-10-16
CVE-2025-55090	Potential out of bound read issue in _nx_ipv4_packet_receive() in NetX Duo — NetX DuoCWE-125	5.3^AI	Medium^AI	2025-10-16

This page lists every published CVE security advisory associated with Eclipse Foundation. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.

Support Us — Your donation helps us keep running

Eclipse Foundation — Vulnerabilities & Security Advisories 91