Lucene search
K

5 matches found

SUSE CVE
SUSE CVE
added 2026/05/12 5:13 a.m.15 views

SUSE CVE-2020-27223

In Eclipse Jetty 9.4.6.v20170531 to 9.4.36.v20210114 inclusive, 10.0.0, and 11.0.0 when Jetty handles a request containing multiple Accept headers with a large number of “quality” i.e. q parameters, the server may enter a denial of service DoS state due to high CPU usage processing those quality...

7.5CVSS6.8AI score0.7795EPSS
Exploits0References4
OSV
OSV
added 2025/09/12 11:46 a.m.7 views

BIT-NIFI-2020-27223

In Eclipse Jetty 9.4.6.v20170531 to 9.4.36.v20210114 inclusive, 10.0.0, and 11.0.0 when Jetty handles a request containing multiple Accept headers with a large number of “quality” i.e. q parameters, the server may enter a denial of service DoS state due to high CPU usage processing those quality...

5.3CVSS6.8AI score0.7795EPSS
Exploits0References68
Tenable Nessus
Tenable Nessus
added 2025/08/21 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2022-2047

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Eclipse Jetty versions 9.4.0 thru 9.4.46, and 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, the parsing of the authority segment of an http scheme URI...

4CVSS6.7AI score0.00938EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2021/06/29 6:18 a.m.4 views

jetty: buffer not correctly recycled in Gzip Request inflation

In Eclipse Jetty version 9.4.0.RC0 to 9.4.34.v20201102, 10.0.0.alpha0 to 10.0.0.beta2, and 11.0.0.alpha0 to 11.0.0.beta2, if GZIP request body inflation is enabled and requests from different clients are multiplexed onto a single connection, and if an attacker can send a request with a body that ...

5.8CVSS7.2AI score0.08113EPSS
Exploits0References5
CNVD
CNVD
added 2019/03/28 12:0 a.m.3 views

Eclipse Jetty Denial of Service Vulnerability

Eclipse Jetty is the Eclipse Foundation of an open source , Java-based Web server and Java Servlet container . A denial of service vulnerability exists in Eclipse Jetty versions 9.3.x and 9.4.x, which can be exploited by an attacker to cause a denial of service...

7.5CVSS6.7AI score0.05082EPSS
Exploits0References1
Rows per page
Query Builder