VYPR

Maven package

org.eclipse.edc/connector-core

pkg:maven/org.eclipse.edc/connector-core

Vulnerabilities (1)

  • CVE-2024-4536May 7, 2024
    affected >= 0.2.1, < 0.6.3fixed 0.6.3

    In Eclipse Dataspace Components from version 0.2.1 to 0.6.2, in the EDC Connector component ( https://github.com/eclipse-edc/Connector ), an attacker might obtain OAuth2 client secrets from the vault. In Eclipse Dataspace Components from version 0.2.1 to 0.6.2, we have identifie