Lucene search
K

22 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/06 12:0 a.m.9 views

RHCOS 4 : OpenShift Container Platform 4.6.36 (RHSA-2021:2499)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:2499 advisory. - jetty: local temporary directory hijacking vulnerability CVE-2020-27216 - jetty: buffer not correctly recycled in Gzip Request...

7CVSS6.9AI score0.7795EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2020-27218

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Eclipse Jetty version 9.4.0.RC0 to 9.4.34.v20201102, 10.0.0.alpha0 to 10.0.0.beta2, and 11.0.0.alpha0 to 11.0.0.beta2, if GZIP request body inflation is...

4.8CVSS6.8AI score0.08113EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.45 views

RHEL 8 : jetty (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - jetty: local temporary directory hijacking vulnerability CVE-2020-27216 - jetty: buffer not correctly...

7CVSS7.3AI score0.08113EPSS
Exploits1References3
Broadcom
Broadcom
added 2024/05/01 12:0 a.m.14 views

Statement on Jetty vulnerabilities in Brocade SANav

A Security Researcher performing penetration testing raises CVEs in the Jetty version used by Brocade SANnav v2.1.1. Brocade Statement All supported versions of Brocade SANnav do not directly use Jetty. The code is present within some versions of the SANnav product as it is contained within other...

9.4CVSS5.8AI score0.99298EPSS
Exploits19
OpenVAS
OpenVAS
added 2023/10/31 12:0 a.m.40 views

Debian: Security Advisory (DLA-3641-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.6AI score0.99999EPSS
Exploits20References6
Tenable Nessus
Tenable Nessus
added 2023/10/31 12:0 a.m.50 views

Debian dla-3641 : jetty9 - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3641 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3641-1 [email protected]...

7.5CVSS7.5AI score0.99999EPSS
Exploits20References8
IBM Security Bulletins
IBM Security Bulletins
added 2021/07/30 5:6 a.m.48 views

Security Bulletin: Multiple Vulnerabilities were detected in IBM Secure External Authentication Server

Summary There are multiple vulnerabilities in IBM Secure External Authentication Server. IBM Secure External Authentication Server has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2021-29725 DESCRIPTION: IBM Sterling Secure Proxy could allow a remote user to consume resources...

7.5CVSS0.6AI score0.7795EPSS
Exploits1Affected Software1
RedHat Linux
RedHat Linux
added 2021/07/02 12:20 a.m.101 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.5.41 security update

Red Hat OpenShift Container Platform release 4.5.41 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, whic...

8.1CVSS6.7AI score0.7795EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2021/07/02 12:0 a.m.40 views

RHEL 7 : OpenShift Container Platform 4.5.41 (RHSA-2021:2431)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:2431 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or privat...

8.1CVSS7.3AI score0.7795EPSS
Exploits1References17
RedHat Linux
RedHat Linux
added 2021/06/29 6:18 a.m.127 views

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.6.36 security update

An update for cri-o, jenkins, openshift-clients, and openshift-kuryr is now available for Red Hat OpenShift Container Platform 4.6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

7CVSS6.8AI score0.7795EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2021/06/29 12:0 a.m.53 views

RHEL 8 : OpenShift Container Platform 4.6.36 (RHSA-2021:2499)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:2499 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or privat...

7CVSS7.4AI score0.7795EPSS
Exploits1References9
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2020:3922-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.8CVSS5.7AI score0.08113EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2021/05/14 9:15 p.m.102 views

Security Bulletin: Vulnerabilities in Apache HttpClient and Eclipse Jetty Affect IBM Control Center (CVE-2020-13956, CVE-2020-27218)

Summary Apache HttpClient could allow a remote attacker to bypass security restrictions, caused by the improper handling of malformed authority component in request. Eclipse Jetty could allow a remote attacker to bypass security restrictions, caused by a flaw when GZIP request body inflation is...

5.8CVSS0.8AI score0.08665EPSS
Exploits1Affected Software1
OpenVAS
OpenVAS
added 2021/04/16 12:0 a.m.28 views

openSUSE: Security Advisory for jetty-minimal (openSUSE-SU-2021:0012-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

5.8CVSS6.4AI score0.08113EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2021/02/04 1:36 p.m.118 views

Moderate: Red Hat Security Advisory: Red Hat AMQ Broker 7.8.1 release and security update

Red Hat AMQ Broker 7.8.1 is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

7.5CVSS6.8AI score0.08113EPSS
Exploits2References5
RedHat Linux
RedHat Linux
added 2021/02/02 7:36 a.m.84 views

Moderate: Red Hat Security Advisory: Red Hat AMQ Broker 7.4.6 release and security update

Red Hat AMQ Broker 7.4.6 is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

7CVSS6.8AI score0.08113EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2021/01/25 12:0 a.m.35 views

openSUSE Security Update : jetty-minimal (openSUSE-2021-12)

This update for jetty-minimal fixes the following issues : - jetty-minimal was upgraded to version 9.4.35.v20201120 - CVE-2020-27218: Fixed an issue where buffer not correctly recycled in Gzip Request inflation bsc1179727. This update was imported from the SUSE:SLE-15-SP2:Update update project. C...

5.8CVSS7.2AI score0.08113EPSS
Exploits0References2
OSV
OSV
added 2021/01/04 11:23 a.m.7 views

OPENSUSE-SU-2021:0012-1 Security update for jetty-minimal

This update for jetty-minimal fixes the following issues: - jetty-minimal was upgraded to version 9.4.35.v20201120 - CVE-2020-27218: Fixed an issue where buffer not correctly recycled in Gzip Request inflation bsc1179727. This update was imported from the SUSE:SLE-15-SP2:Update update project...

5.8CVSS5.9AI score0.08113EPSS
Exploits0References3
OSV
OSV
added 2020/11/28 1:15 a.m.3 views

DEBIAN-CVE-2020-27218

In Eclipse Jetty version 9.4.0.RC0 to 9.4.34.v20201102, 10.0.0.alpha0 to 10.0.0.beta2, and 11.0.0.alpha0 to 11.0.0.beta2, if GZIP request body inflation is enabled and requests from different clients are multiplexed onto a single connection, and if an attacker can send a request with a body that ...

4.8CVSS6.5AI score0.08113EPSS
Exploits0References1
OSV
OSV
added 2020/11/28 1:15 a.m.41 views

CVE-2020-27218

In Eclipse Jetty version 9.4.0.RC0 to 9.4.34.v20201102, 10.0.0.alpha0 to 10.0.0.beta2, and 11.0.0.alpha0 to 11.0.0.beta2, if GZIP request body inflation is enabled and requests from different clients are multiplexed onto a single connection, and if an attacker can send a request with a body that ...

4.8CVSS7AI score0.08113EPSS
Exploits0References117
Rows per page
Query Builder