K18484125: Eclipse Jetty vulnerability CVE-2020-27216

🗓️ 21 Feb 2023 18:47:39Reported by f5Type

f5🔗 my.f5.com👁 161 Views

Eclipse Jetty vulnerability CVE-2020-27216, shared temporary directory race conditio

Reporter	Title	Published	Views	Family All 111
IBM Security Bulletins	Security Bulletin: IBM Storage Protect Server is vulnerable to various attacks due to Eclipse jetty	21 Jun 202318:36	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in dependent libraries affect IBM® Db2® leading to denial of service or privilege escalation.	23 Jun 202118:01	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in eclipse jetty affect IBM Business Automation Workflow	3 Jun 202413:36	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cognos Analytics is affected by multiple vulnerabilities	15 Apr 202503:05	–	ibm
IBM Security Bulletins	Security Bulletin: An Eclipse Jetty vulnerability affects IBM Rational Functional Tester	27 Jan 202117:25	–	ibm
IBM Security Bulletins	Security Bulletin: A vulnerability in Eclipse Jetty affects IBM Rational Service Tester (CVE-2020-27216)	25 Jan 202113:53	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities in Eclipse Jetty affect IBM Security Directory Integrator	15 May 202400:45	–	ibm
IBM Security Bulletins	Security Bulletin: Eclipse Jetty (Publicly disclosed vulnerability) affects Content Classifaction	27 Nov 202018:41	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities affect IBM Storage Scale Hadoop Connector	1 Jan 202407:18	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cognos Analytics has addressed multiple vulnerabilities	29 Jun 202123:59	–	ibm

Vulners

Node

f5 big-ip_aamRange17.0.0–17.1.0

OR

f5 big-ip_afmRange17.0.0–17.1.0

OR

f5 big-ip_analyticsRange17.0.0–17.1.0

OR

f5 big-ip_apmRange17.0.0–17.1.0

OR

f5 big-ip_asmRange17.0.0–17.1.0

OR

f5 big-ip_ddos_hybrid_defenderRange17.0.0–17.1.0

OR

f5 big-ip_dnsRange17.0.0–17.1.0

OR

f5 big-ip_fpsRange17.0.0–17.1.0

OR

f5 big-ip_link_controllerRange17.0.0–17.1.0

OR

f5 big-ip_ltmRange17.0.0–17.1.0

OR

f5 big-ip_pemRange17.0.0–17.1.0

OR

f5 big-ip_ssl_orchestratorRange17.0.0–17.1.0

OR

f5 big-ip_aamRange16.0.0–16.1.3

OR

f5 big-ip_afmRange16.0.0–16.1.3

OR

f5 big-ip_analyticsRange16.0.0–16.1.3

OR

f5 big-ip_apmRange16.0.0–16.1.3

OR

f5 big-ip_asmRange16.0.0–16.1.3

OR

f5 big-ip_ddos_hybrid_defenderRange16.0.0–16.1.3

OR

f5 big-ip_dnsRange16.0.0–16.1.3

OR

f5 big-ip_fpsRange16.0.0–16.1.3

OR

f5 big-ip_link_controllerRange16.0.0–16.1.3

OR

f5 big-ip_ltmRange16.0.0–16.1.3

OR

f5 big-ip_pemRange16.0.0–16.1.3

OR

f5 big-ip_ssl_orchestratorRange16.0.0–16.1.3

OR

f5 big-ip_aamRange15.1.0–15.1.8

OR

f5 big-ip_afmRange15.1.0–15.1.8

OR

f5 big-ip_analyticsRange15.1.0–15.1.8

OR

f5 big-ip_apmRange15.1.0–15.1.8

OR

f5 big-ip_asmRange15.1.0–15.1.8

OR

f5 big-ip_ddos_hybrid_defenderRange15.1.0–15.1.8

OR

f5 big-ip_dnsRange15.1.0–15.1.8

OR

f5 big-ip_fpsRange15.1.0–15.1.8

OR

f5 big-ip_link_controllerRange15.1.0–15.1.8

OR

f5 big-ip_ltmRange15.1.0–15.1.8

OR

f5 big-ip_pemRange15.1.0–15.1.8

OR

f5 big-ip_ssl_orchestratorRange15.1.0–15.1.8

OR

f5 big-ip_aamRange14.1.0–14.1.5

OR

f5 big-ip_afmRange14.1.0–14.1.5

OR

f5 big-ip_analyticsRange14.1.0–14.1.5

OR

f5 big-ip_apmRange14.1.0–14.1.5

OR

f5 big-ip_asmRange14.1.0–14.1.5

OR

f5 big-ip_ddos_hybrid_defenderRange14.1.0–14.1.5

OR

f5 big-ip_dnsRange14.1.0–14.1.5

OR

f5 big-ip_fpsRange14.1.0–14.1.5

OR

f5 big-ip_link_controllerRange14.1.0–14.1.5

OR

f5 big-ip_ltmRange14.1.0–14.1.5

OR

f5 big-ip_pemRange14.1.0–14.1.5

OR

f5 big-ip_ssl_orchestratorRange14.1.0–14.1.5

OR

f5 big-iq_centralized_managementRange8.0.0–8.4.0

OR

f5 big-iq_centralized_managementRange7.0.0–7.1.0

OR

f5 traffix_sdcMatch5.2.0

OR

f5 traffix_sdcMatch5.1.0

27 Mar 2025 05:29Current

7.4High risk

Vulners AI Score7.4

CVSS 24.4

CVSS 3.17

EPSS0.00072

eclipse jetty vulnerability cve-2020-27216 shared temporary directory race condition local privilege escalation