Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2021-41034

The build of some language stacks of Eclipse Che version 6 includes pulling some binaries from an unsecured HTTP endpoint. As a consequence the builds of such stacks are vulnerable to MITM attacks that allow the replacement of the original binaries with arbitrary ones. The stacks involved are Java 8 (alpine and centos), Android and PHP. The vulnerability is not exploitable at runtime but only when building Che.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 43.2%
CVSS Severity
CVSS v3 Score 8.1
CVSS v2 Score 6.8
Products affected by CVE-2021-41034
  • Eclipse » Che » Version: 6.0.0
    cpe:2.3:a:eclipse:che:6.0.0
  • Eclipse » Che » Version: 6.1.0
    cpe:2.3:a:eclipse:che:6.1.0
  • Eclipse » Che » Version: 6.1.1
    cpe:2.3:a:eclipse:che:6.1.1
  • Eclipse » Che » Version: 6.10.0
    cpe:2.3:a:eclipse:che:6.10.0
  • Eclipse » Che » Version: 6.11.0
    cpe:2.3:a:eclipse:che:6.11.0
  • Eclipse » Che » Version: 6.11.1
    cpe:2.3:a:eclipse:che:6.11.1
  • Eclipse » Che » Version: 6.12.0
    cpe:2.3:a:eclipse:che:6.12.0
  • Eclipse » Che » Version: 6.12.1
    cpe:2.3:a:eclipse:che:6.12.1
  • Eclipse » Che » Version: 6.12.2
    cpe:2.3:a:eclipse:che:6.12.2
  • Eclipse » Che » Version: 6.13.0
    cpe:2.3:a:eclipse:che:6.13.0
  • Eclipse » Che » Version: 6.13.1
    cpe:2.3:a:eclipse:che:6.13.1
  • Eclipse » Che » Version: 6.14.0
    cpe:2.3:a:eclipse:che:6.14.0
  • Eclipse » Che » Version: 6.14.1
    cpe:2.3:a:eclipse:che:6.14.1
  • Eclipse » Che » Version: 6.14.2
    cpe:2.3:a:eclipse:che:6.14.2
  • Eclipse » Che » Version: 6.15.0
    cpe:2.3:a:eclipse:che:6.15.0
  • Eclipse » Che » Version: 6.16.0
    cpe:2.3:a:eclipse:che:6.16.0
  • Eclipse » Che » Version: 6.17.0
    cpe:2.3:a:eclipse:che:6.17.0
  • Eclipse » Che » Version: 6.17.1
    cpe:2.3:a:eclipse:che:6.17.1
  • Eclipse » Che » Version: 6.18.0
    cpe:2.3:a:eclipse:che:6.18.0
  • Eclipse » Che » Version: 6.18.1
    cpe:2.3:a:eclipse:che:6.18.1
  • Eclipse » Che » Version: 6.18.2
    cpe:2.3:a:eclipse:che:6.18.2
  • Eclipse » Che » Version: 6.19.0
    cpe:2.3:a:eclipse:che:6.19.0
  • Eclipse » Che » Version: 6.19.1
    cpe:2.3:a:eclipse:che:6.19.1
  • Eclipse » Che » Version: 6.19.2
    cpe:2.3:a:eclipse:che:6.19.2
  • Eclipse » Che » Version: 6.19.3
    cpe:2.3:a:eclipse:che:6.19.3
  • Eclipse » Che » Version: 6.19.4
    cpe:2.3:a:eclipse:che:6.19.4
  • Eclipse » Che » Version: 6.19.5
    cpe:2.3:a:eclipse:che:6.19.5
  • Eclipse » Che » Version: 6.19.6
    cpe:2.3:a:eclipse:che:6.19.6
  • Eclipse » Che » Version: 6.2.0
    cpe:2.3:a:eclipse:che:6.2.0
  • Eclipse » Che » Version: 6.3.0
    cpe:2.3:a:eclipse:che:6.3.0
  • Eclipse » Che » Version: 6.4.0
    cpe:2.3:a:eclipse:che:6.4.0
  • Eclipse » Che » Version: 6.4.1
    cpe:2.3:a:eclipse:che:6.4.1
  • Eclipse » Che » Version: 6.5.0
    cpe:2.3:a:eclipse:che:6.5.0
  • Eclipse » Che » Version: 6.5.1
    cpe:2.3:a:eclipse:che:6.5.1
  • Eclipse » Che » Version: 6.5.2
    cpe:2.3:a:eclipse:che:6.5.2
  • Eclipse » Che » Version: 6.5.3
    cpe:2.3:a:eclipse:che:6.5.3
  • Eclipse » Che » Version: 6.6.0
    cpe:2.3:a:eclipse:che:6.6.0
  • Eclipse » Che » Version: 6.6.1
    cpe:2.3:a:eclipse:che:6.6.1
  • Eclipse » Che » Version: 6.6.2
    cpe:2.3:a:eclipse:che:6.6.2
  • Eclipse » Che » Version: 6.7.0
    cpe:2.3:a:eclipse:che:6.7.0
  • Eclipse » Che » Version: 6.7.1
    cpe:2.3:a:eclipse:che:6.7.1
  • Eclipse » Che » Version: 6.8.0
    cpe:2.3:a:eclipse:che:6.8.0
  • Eclipse » Che » Version: 6.9.0
    cpe:2.3:a:eclipse:che:6.9.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved