Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
githubGitHub Advisory DatabaseGHSA-QMGJ-5H75-JR67
HistoryMay 01, 2022 - 7:02 a.m.

Jetty Directory Traversal Vulnerability

2022-05-0107:02:10
CWE-22
GitHub Advisory Database
github.com
4

6.8 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.004 Low

EPSS

Percentile

74.7%

JSON

Directory traversal vulnerability in jetty 6.0.x (jetty6) beta16 allows remote attackers to read arbitrary files via a %2e%2e%5c (encoded ../) in the URL. NOTE: this might be the same issue as CVE-2005-3747.

CPENameOperatorVersion
org.mortbay.jetty:jettyle6.0.beta16

Related

cve 2
osv 2
github 1
prion 1
veracode 2
nessus 2
cve
cve
CVE-2006-2758
2006-06-02 01:02:00
CVE-2005-3747
2005-11-22 11:03:00
osv
osv
Mortbay Jetty Discloses JSP Source Code
2022-05-01 02:20:38
Jetty Directory Traversal Vulnerability
2022-05-01 07:02:10
github
github
Mortbay Jetty Discloses JSP Source Code
2022-05-01 02:20:38
prion
prion
Directory traversal
2006-06-02 01:02:00
veracode
veracode
Directory Traversal
2018-11-14 00:52:53
Directory Traversal
2018-11-13 07:08:22
nessus
nessus
HP-UX PHSS_35437 : s700_800 11.04 Webproxy server 2.1 (Apache 2.x) update
2006-11-22 00:00:00
HP-UX PHSS_35436 : s700_800 11.04 Virtualvault 4.7 OWS (Apache 2.x) update
2006-11-22 00:00:00

6.8 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.004 Low

EPSS

Percentile

74.7%

JSON
Related for GHSA-QMGJ-5H75-JR67
cve2osv2github1prion1veracode2nessus2