Insecure File Transfer in Xtext & Xtend Versions Prior to 2.18.0

Insecure File Transfer in Xtext & Xtend Versions Prior to 2.18.0

CVE-2019-10249 · HIGH Severity

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

All Xtext & Xtend versions prior to 2.18.0 were built using HTTP instead of HTTPS file transfer and thus the built artifacts may have been compromised.

Learn more about our Web Application Penetration Testing UK.