Californium
This hub aggregates every CVE we track for Californium, a product in the devtools ci space. Use it to gauge the current risk picture and drill into individual advisories.
4
CVEs tracked
0
Critical
4
High
0
In CISA KEV
Severity distribution
HIGH4
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 4 most recently published vulnerabilities affecting Californium.
- CVE-2022-39368Californium Failing DTLS handshakes causes Data Loss due to throttling blocking processing of records8.2
- CVE-2022-2576In Eclipse Californium version 2.0.0 to 2.7.2 and 3.0.0-3.5.0 a DTLS resumption handshake falls back to a DTLS full handshake on a parameter mismatch without using a HelloVerifyRequest. Especially,...7.5
- CVE-2021-34433In Eclipse Californium version 2.0.0 to 2.6.4 and 3.0.0-M1 to 3.0.0-M3, the certificate based (x509 and RPK) DTLS handshakes accidentally succeeds without verifying the server side's signature on t...7.5
- CVE-2020-27222In Eclipse Californium version 2.3.0 to 2.6.0, the certificate based (x509 and RPK) DTLS handshakes accidentally fails, because the DTLS server side sticks to a wrong internal state. That wrong int...7.5
Product normalization is registry-driven with AI assist and human review. How it works