Security Bulletin: IBM Sterling Control Center is affected by a vulnerability in jetty-ee10-jaspi (CVE-2026-5795)

Summary IBM Sterling Control Center is affected by a vulnerability CVE-2026-5795 reported for jetty-ee10-jaspi-12.0.25.jar . Vulnerability Details CVEID:CVE-2026-5795 DESCRIPTION: In Eclipse Jetty, the class JASPIAuthenticator initiates the authentication checks, which set two ThreadLocal variabl...

Important: jetty

Issue Overview: In Eclipse Jetty, the class JASPIAuthenticator initiates the authentication checks, which set two ThreadLocal variable. Upon returning from the initial checks, there are conditions that cause an early return from the JASPIAuthenticator code without clearing those ThreadLocals. A...

Amazon Linux 2 : jetty, --advisory ALAS2-2026-3277 (ALAS-2026-3277)

It is, therefore, affected by a vulnerability as referenced in the ALAS2-2026-3277 advisory. In Eclipse Jetty, the class JASPIAuthenticator initiates the authentication checks, which set two ThreadLocal variable. Upon returning from the initial checks, there are conditions that cause an early...

CVE-2026-5795

creationtimestamp| type| source ---|---|--- 2026-04-08 14:57:16+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3miykitb4ng2t 2026-04-08 15:16:41+00:00| seen| Telegram/Jgs5105KRNeeN6Me9oFeQT01tz9bvpQqKtTaGf0YvrxH7I 2026-04-20 11:54:00+00:00| seen|...