Lucene search

Basic search
Lucene search
Search by product

Database

Vendors

GoogleOSV:DSA-5507-1

HistorySep 28, 2023 - 12:00 a.m.

jetty9 - security update

Vulners
Osv
jetty9 - security update

2023-09-2800:00:00

Google

osv.dev

jetty9

security update

software

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

7.2 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

61.4%

JSON

Bulletin has no description

CPENameOperatorVersion
jetty9eq9.4.50-4
jetty9eq9.4.39-3
jetty9eq9.4.39-3+deb11u1

Name	Operator	Version
jetty9	eq	9.4.50-4
jetty9	eq	9.4.39-3
jetty9	eq	9.4.39-3+deb11u1

nessus 20

debian 2

openvas 12

osv 11

ibm 71

redhat 20

redos 2

ubuntucve 5

redhatcve 5

veracode 5

cve 5

githubexploit 4

github 5

amazon 2

prion 5

nvd 5

debiancve 5

cgr 5

cvelist 5

wolfi 5

nessus

Debian DSA-5507-1 : jetty9 - security update

2023-09-29 00:00:00

Debian DLA-3592-1 : jetty9 - LTS security update

2023-10-01 00:00:00

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : jetty-minimal (SUSE-SU-2023:2539-1)

2023-06-20 00:00:00

debian

[SECURITY] [DSA 5507-1] jetty9 security update

2023-09-28 22:37:26

[SECURITY] [DLA 3592-1] jetty9 security update

2023-09-30 12:35:53

openvas

Debian: Security Advisory (DSA-5507-1)

2023-09-29 00:00:00

Debian: Security Advisory (DLA-3592-1)

2023-10-02 00:00:00

openSUSE: Security Advisory for jetty (SUSE-SU-2023:4210-1)

2024-03-04 00:00:00

osv

jetty9 - security update

2023-09-30 00:00:00

OutOfMemoryError for large multipart without filename in Eclipse Jetty

2023-04-19 18:15:45

CVE-2023-26048

2023-04-18 21:15:08

ibm

Security Bulletin: IBM Sterling Connect:Direct Web Services is vulnerable to multiple vulnerabilities due to Eclipse Jetty

2023-11-24 02:37:29

Security Bulletin: IBM Sterling Connect:Direct Browser User Interface is vulnerable to multiple vulnerabilities due to Eclipse Jetty

2023-11-24 02:40:37

Security Bulletin: An Eclipse Jetty vulnerability affects IBM Rational Functional Tester

2023-12-18 12:15:27

redhat

(RHSA-2024:3385) Moderate: Red Hat JBoss EAP 7.4.14 XP 4.0.2.GA security release

2024-05-28 11:17:57

(RHSA-2023:5441) Moderate: Red Hat Integration Camel for Spring Boot 4.0.0 release and security update

2023-10-04 11:28:46

(RHSA-2024:0797) Important: Satellite 6.14.2 Async Security Update

2024-02-13 14:38:17

redos

ROS-20240409-12

2024-04-09 00:00:00

ROS-20240403-13

2024-04-03 00:00:00

ubuntucve

CVE-2023-26048

2023-04-18 00:00:00

CVE-2023-41900

2023-09-15 00:00:00

CVE-2023-36479

2023-09-15 00:00:00

redhatcve

CVE-2023-26048

2023-08-31 01:30:14

CVE-2023-41900

2023-10-30 19:43:13

CVE-2023-36479

2023-09-22 20:24:51

veracode

Denial Of Service (DOS)

2023-04-20 14:24:08

Arbitrary Code Execution

2023-09-20 10:17:36

Information Disclosure

2023-04-24 04:51:24

cve

CVE-2023-26048

2023-04-18 21:15:08

CVE-2023-36479

2023-09-15 19:15:08

CVE-2023-26049

2023-04-18 21:15:09

githubexploit

Exploit for Uncontrolled Resource Consumption in Eclipse Jetty

2023-11-01 06:57:10

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Eclipse Jetty

2023-10-31 10:53:27

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Eclipse Jetty

2023-11-01 09:55:19

github

Jetty vulnerable to errant command quoting in CGI Servlet

2023-09-14 16:16:00

Jetty accepts "+" prefixed value in Content-Length

2023-09-14 16:17:27

Eclipse Jetty's cookie parsing of quoted values can exfiltrate values from other cookies

2023-04-18 22:19:57

amazon

Medium: jetty

2024-01-03 21:04:00

Medium: jetty

2024-02-15 03:52:00

prion

Design/Logic Flaw

2023-09-15 19:15:00

Authentication flaw

2023-09-15 21:15:00

Design/Logic Flaw

2023-04-18 21:15:00

nvd

CVE-2023-40167

2023-09-15 20:15:09

CVE-2023-36479

2023-09-15 19:15:08

CVE-2023-26049

2023-04-18 21:15:09

debiancve

CVE-2023-40167

2023-09-15 20:15:09

CVE-2023-36479

2023-09-15 19:15:08

CVE-2023-26049

2023-04-18 21:15:09

cgr

CVE-2023-26049 vulnerabilities

2024-05-19 03:07:16

CVE-2023-26048 vulnerabilities

2024-05-19 03:07:16

CVE-2023-41900 vulnerabilities

2024-05-19 03:07:16

cvelist

CVE-2023-26048 OutOfMemoryError for large multipart without filename in Eclipse Jetty

2023-04-18 20:30:20

CVE-2023-41900 Jetty's OpenId Revoked authentication allows one request

2023-09-15 20:17:42

CVE-2023-36479 Jetty vulnerable to errant command quoting in CGI Servlet

2023-09-15 18:37:35

wolfi

CVE-2023-40167 vulnerabilities

2024-06-29 09:08:33

CVE-2023-26049 vulnerabilities

2024-06-29 09:08:33

CVE-2023-41900 vulnerabilities

2024-06-29 09:08:33

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

7.2 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

61.4%

JSON

Related for OSV:DSA-5507-1