Eclipse Jetty repository allows wrong command execution via CgiServlet with specific structure. Patched in versions 9.4.52, 10.0.16, 11.0.16, and 12.0.0-beta2
Reporter | Title | Published | Views | Family All 82 |
---|---|---|---|---|
![]() | Jetty vulnerable to errant command quoting in CGI Servlet | 14 Sep 202316:16 | – | github |
![]() | CGA-fq64-7x7j-66q4 | 6 Jun 202412:27 | – | osv |
![]() | CVE-2023-36479 | 15 Sep 202319:15 | – | osv |
![]() | CGA-xx36-6xhx-6c36 | 6 Jun 202412:30 | – | osv |
![]() | Jetty vulnerable to errant command quoting in CGI Servlet | 14 Sep 202316:16 | – | osv |
![]() | jetty9 - security update | 30 Sep 202300:00 | – | osv |
![]() | jetty9 - security update | 28 Sep 202300:00 | – | osv |
![]() | Red Hat Security Advisory: Satellite 6.14.2 Async Security Update | 30 Sep 202407:12 | – | osv |
![]() | Red Hat Security Advisory: Satellite 6.15.0 release | 30 Sep 202415:58 | – | osv |
![]() | Eclipse Jetty CgiServlet Vulnerability (GHSA-3gh6-v5v9-6v9j) - Linux | 19 Sep 202300:00 | – | openvas |
OS | OS Version | Architecture | Package | Package Version | Filename |
---|---|---|---|---|---|
Amazon Linux | 2 | noarch | jetty-project | 9.0.3-8.amzn2.0.2 | jetty-project-9.0.3-8.amzn2.0.2.noarch.rpm |
Amazon Linux | 2 | noarch | jetty-annotations | 9.0.3-8.amzn2.0.2 | jetty-annotations-9.0.3-8.amzn2.0.2.noarch.rpm |
Amazon Linux | 2 | noarch | jetty-ant | 9.0.3-8.amzn2.0.2 | jetty-ant-9.0.3-8.amzn2.0.2.noarch.rpm |
Amazon Linux | 2 | noarch | jetty-client | 9.0.3-8.amzn2.0.2 | jetty-client-9.0.3-8.amzn2.0.2.noarch.rpm |
Amazon Linux | 2 | noarch | jetty-continuation | 9.0.3-8.amzn2.0.2 | jetty-continuation-9.0.3-8.amzn2.0.2.noarch.rpm |
Amazon Linux | 2 | noarch | jetty-deploy | 9.0.3-8.amzn2.0.2 | jetty-deploy-9.0.3-8.amzn2.0.2.noarch.rpm |
Amazon Linux | 2 | noarch | jetty-http | 9.0.3-8.amzn2.0.2 | jetty-http-9.0.3-8.amzn2.0.2.noarch.rpm |
Amazon Linux | 2 | noarch | jetty-io | 9.0.3-8.amzn2.0.2 | jetty-io-9.0.3-8.amzn2.0.2.noarch.rpm |
Amazon Linux | 2 | noarch | jetty-jaas | 9.0.3-8.amzn2.0.2 | jetty-jaas-9.0.3-8.amzn2.0.2.noarch.rpm |
Amazon Linux | 2 | noarch | jetty-jaspi | 9.0.3-8.amzn2.0.2 | jetty-jaspi-9.0.3-8.amzn2.0.2.noarch.rpm |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo