CVE-2025-53114

CometD is a scalable comet implementation for web messaging. In versions 5.0.0 through 5.0.22, 6.0.0 through 6.0.18, 7.0.0 through 7.0.18, and 8.0.0 through 8.0.8, bad clients that always send a fixed batch value when the server is using the acknowledgement extension may cause the unacknowledged...

CVE-2025-53114

Affected software: CometD server implementations. A vulnerability arises when clients consistently set ext.ack to 1 during /meta/connect while the acknowledgement extension is enabled, causing the unacknowledged message queue to grow without bound and potentially trigger OutOfMemoryError. Affecte...

CVE-2025-53114 CometD has acknowledgement extension out of memory

CometD is a scalable comet implementation for web messaging. In versions 5.0.0 through 5.0.22, 6.0.0 through 6.0.18, 7.0.0 through 7.0.18, and 8.0.0 through 8.0.8, bad clients that always send a fixed batch value when the server is using the acknowledgement extension may cause the unacknowledged...

PT-2026-48527

Name of the Vulnerable Software and Affected Versions CometD versions 5.0.x CometD versions 6.0.x CometD versions 8.0.x Description Improper handling of the acknowledgement extension allows malicious clients to cause a server outage. By consistently sending a fixed batch value in the ext paramete...

EUVD-2022-1534

Malicious code in bioql PyPI...

Security Bulletin: Provision to add https and Secure Flag to bayeux_browser cookie for IBM Control Desk.

Summary BAYEUXBROWSER cookie is generated from Cometd Server and it remains live with the session. In older versions of cometd server, BAYEUXBROWSER cookie was neither true for https nor for secure. But in the current version ie. 5.0.3, there is a provision to make the cookie true for https and...

Security Bulletin: Provision to add https and Secure Flag to bayeux_browser cookie for IBM Control Desk.

Summary BAYEUXBROWSER cookie is generated from Cometd Server and it remains live with the session. In older versions of cometd server, BAYEUXBROWSER cookie was neither true for https nor for secure. But in the current version ie. 5.0.3, there is a provision to make the cookie true for https and...

CVE-2022-24721

A flaw was found in CometD’s Oort package. This flaw allows an attacker to monitor unauthorized channels when connected remotely...

Improper Authorization

org.cometd.java:cometd-java-oort is vulnerable to improper authorization. Remote attackers are able to subscribe and publish to Oort and Seti channels due to improper authorization, allowing interception of internal cluster traffic. As a result the remote attackers are able to create/modify/delet...

org.cometd:cometd-demo (>=6.0.0 <=6.0.19), org.cometd:cometd-documentation (>=6.0.1 <=6.0.19) potentially affected by CVE-2022-24721 via org.cometd.java:cometd-java-oort (>=6.0.0 <=6.0.5)

org.cometd.java:cometd-java-oort MAVEN version =6.0.0, =6.0.0, =6.0.1, =6.0.19 Source cves: CVE-2022-24721 Source advisory: OSV:GHSA-RJMQ-6V55-4RJV...

org.cometd:cometd-demo (>=1.0.0 <=5.0.10), org.cometd:cometd-documentation (=5.0.10) potentially affected by CVE-2022-24721 via org.cometd.java:cometd-java-oort (>=1.0.beta9 <=5.0.10)

org.cometd.java:cometd-java-oort MAVEN version =1.0.beta9, =1.0.0, =5.0.10 - org.cometd:cometd-documentation =5.0.10 Source cves: CVE-2022-24721 Source advisory: OSV:GHSA-RJMQ-6V55-4RJV...

org.cometd:cometd-demo (>=7.0.0 <=7.0.19), org.cometd:cometd-documentation (>=7.0.1 <=7.0.19) potentially affected by CVE-2022-24721 via org.cometd.java:cometd-java-oort (>=7.0.0 <=7.0.5)

org.cometd.java:cometd-java-oort MAVEN version =7.0.0, =7.0.0, =7.0.1, =7.0.19 Source cves: CVE-2022-24721 Source advisory: OSV:GHSA-RJMQ-6V55-4RJV...

CVE-2022-24721

CometD is a scalable comet implementation for web messaging. In any version prior to 5.0.11, 6.0.6, and 7.0.6, internal usage of Oort and Seti channels is improperly authorized, so any remote user could subscribe and publish to those channels. By subscribing to those channels, a remote user may b...

Code injection

CometD is a scalable comet implementation for web messaging. In any version prior to 5.0.11, 6.0.6, and 7.0.6, internal usage of Oort and Seti channels is improperly authorized, so any remote user could subscribe and publish to those channels. By subscribing to those channels, a remote user may b...

CVE-2022-24721 Incorrect Authorization in org.cometd.oort

CometD is a scalable comet implementation for web messaging. In any version prior to 5.0.11, 6.0.6, and 7.0.6, internal usage of Oort and Seti channels is improperly authorized, so any remote user could subscribe and publish to those channels. By subscribing to those channels, a remote user may b...

CVE-2022-24721

The CVE-2022-24721 issue affects CometD’s Oort/Seti channels. In all versions prior to 5.0.11, 6.0.6, and 7.0.6, internal authorization is improper, allowing remote users to subscribe to or publish on these channels. Subscribing can enable viewing cluster-internal traffic; publishing can allow cr...

CVE-2022-24721 Incorrect Authorization in org.cometd.oort

CometD is a scalable comet implementation for web messaging. In any version prior to 5.0.11, 6.0.6, and 7.0.6, internal usage of Oort and Seti channels is improperly authorized, so any remote user could subscribe and publish to those channels. By subscribing to those channels, a remote user may b...

CometD 安全漏洞

CometD is an extensible WebSocket and HTTP-based event and message routing bus for the CometD community. A security vulnerability in CometD in any version prior to 5.0.11, 6.0.6, and 7.0.6 stems from the fact that internal use of the Oort and Seti channels is not properly authorized, so any remot...