This page lists publicly disclosed CVE vulnerabilities affecting eclipse lemminx (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2022-0673 | A flaw was found in LemMinX in versions prior to 0.19.0. Cache poisoning of external schema files due to directory traversal. | [email protected] | 6.5 | 0.98% | 2022-02-18 | 2026-06-17 |
| CVE-2022-0672 | A flaw was found in LemMinX in versions prior to 0.19.0. Insecure redirect could allow unauthorized access to sensitive information locally if LemMinX is run under a privileged user. | [email protected] | 5.5 | 0.29% | 2022-02-18 | 2026-06-17 |