Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

maven

org.eclipse.jetty:jetty-server

maven

The legacy jetty server artifact.

View on github.com · View on repo1.maven.org

Security Advisories for org.eclipse.jetty:jetty-server in maven

High
6 months ago

**UNSUPPORTED WHEN ASSIGNED** GzipHandler causes part of request body to be seen as request body of a separate request GSA_kwCzR0hTQS1xNHJ2LWdxOTYtdzdjNc4ABHpc

maven org.eclipse.jetty:jetty-server
Moderate
about 1 year ago

Eclipse Jetty's ThreadLimitHandler.getRemote() vulnerable to remote DoS attacks GSA_kwCzR0hTQS1nOG01LTcyMnItOHdocc4ABAQX

maven org.eclipse.jetty:jetty-server
Moderate
over 2 years ago

OutOfMemoryError for large multipart without filename in Eclipse Jetty GSA_kwCzR0hTQS1xdzY5LXJxajgtNnF3OM4AAy3u

maven org.eclipse.jetty:jetty-server
Low
over 2 years ago

Eclipse Jetty's cookie parsing of quoted values can exfiltrate values from other cookies GSA_kwCzR0hTQS1wMjZnLTk3bTQtNnE3Y84AAy3M

maven org.eclipse.jetty:jetty-server
High
over 3 years ago

Jetty SslConnection does not release pooled ByteBuffers in case of errors GSA_kwCzR0hTQS04bXBwLWYzZjcteGMyOM4AAtJN

maven org.eclipse.jetty:jetty-server
Moderate
over 3 years ago

Improper Input Validation in Jetty GSA_kwCzR0hTQS1xeHA0LTI3dngteG1tM84AAUC0

maven org.eclipse.jetty:jetty-server
Moderate
over 3 years ago

Jetty Uses Predictable Session Identifiers GSA_kwCzR0hTQS1qZzJ4LXI2NDMtdzJjaM2Uig

maven org.eclipse.jetty:jetty-server
Low
over 4 years ago

SessionListener can prevent a session from being invalidated breaking logout MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW02Y3AtdnhqeC02NWo2

maven org.eclipse.jetty:jetty-server
High
over 4 years ago

Jetty vulnerable to incorrect handling of invalid large TLS frame, exhausting CPU resources MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI2dnItOGo0NS0zcjR3

maven org.eclipse.jetty:jetty-server
Moderate
over 4 years ago

DOS vulnerability for Quoted Quality CSV headers MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW0zOTQtOHJ3dy0zanI3

maven org.eclipse.jetty:jetty-server
Moderate
almost 5 years ago

Buffer not correctly recycled in Gzip Request inflation MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg2d20tcnJqbS04d2g4

maven org.eclipse.jetty:jetty-server
Critical
over 5 years ago

Operation on a Resource after Expiration or Release in Jetty Server MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXgzcmgtbTd2cC0zNWYy

maven org.eclipse.jetty:jetty-server
Moderate
almost 6 years ago

Unescaped exception messages in error responses in Jetty MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVoOWotcTZqMi0yNTNm

maven org.eclipse.jetty:jetty-server
Moderate
over 6 years ago

Information Exposure vulnerability in Eclipse Jetty MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXIyOG0tZzZqOS1yMmg1

maven org.eclipse.jetty:jetty-server
Moderate
over 6 years ago

Installation information leak in Eclipse Jetty MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhjNjctaGp4Ni1jZ2c2

maven org.eclipse.jetty:jetty-server
Moderate
over 6 years ago

Cross-site Scripting in Eclipse Jetty MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTd2eDkteGpoci1ydzZo

maven org.eclipse.jetty:jetty-server
High
over 6 years ago

Uncontrolled Resource Consumption in org.eclipse.jetty:jetty-server MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWgyZjQtdjRjNC02d3g0

maven org.eclipse.jetty:jetty-server
High
about 7 years ago

Jetty vulnerable to exposure of sensitive information to unauthenticated remote users MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdoZ2otM3hxci02amZt

maven org.eclipse.jetty:jetty-server
Critical
about 7 years ago

Jetty vulnerable to authorization bypass due to inconsistent HTTP request handling (HTTP Request Smuggling) MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZ4OXgtOHF3OS05cHA2

maven org.eclipse.jetty:jetty-server
High
about 7 years ago

Jetty vulnerable to cache poisoning due to inconsistent HTTP request handling (HTTP Request Smuggling) MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg0cTctcDIyNi00eDV3

maven org.eclipse.jetty:jetty-server
Critical
about 7 years ago

Jetty contains an alias issue that could allow unauthenticated remote code execution due to specially crafted request MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg3MmctMmg4aC0zNjJx

maven org.eclipse.jetty:jetty-server
Moderate
about 7 years ago

Eclipse Jetty Server generates error message containing sensitive information MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlyZ3YtaDd4NC1xdzhn

maven org.eclipse.jetty:jetty-server
High
about 7 years ago

Jetty vulnerable to exposure of sensitive information due to observable discrepancy MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdmY2MtcGZmNi1yZ2M1

maven org.eclipse.jetty:jetty-server
Critical
about 7 years ago

Critical severity vulnerability that affects org.eclipse.jetty:jetty-server MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZnZzgtNzJmMi1xbTIz

maven org.eclipse.jetty:jetty-server
High
about 7 years ago

Access and integrity issue within Eclipse Jetty MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW13Y3gtNTMyZy04cHEz

maven org.eclipse.jetty:jetty-server

Filter by Severity

Moderate 11 High 8 Critical 4 Low 2