Lucene search
K

27 matches found

Tenable Nessus
Tenable Nessus
added 2025/07/07 12:0 a.m.8 views

TencentOS Server 4: jetty (TSSA-2025:0390)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0390 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

7.5CVSS7.5AI score0.03754EPSS
Exploits1References5
IBM Security Bulletins
IBM Security Bulletins
added 2025/06/23 4:25 p.m.9 views

Security Bulletin: DataStage on Cloud Pak for Data is vulnerable to file descriptor exhaustion due to the Jetty package (CVE-2024-22201).

Summary Jetty is used by DataStage on Cloud Pak for Data as part of web server processing. Vulnerability Details CVEID:CVE-2024-22201 DESCRIPTION: Jetty is a Java based web server and servlet engine. An HTTP/2 SSL connection that is established and TCP congested will be leaked when it times out. ...

7.5CVSS7.5AI score0.01433EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/09/04 3:29 p.m.37 views

Security Bulletin: Multiple vulnerabilities affect Apache Solr shipped with IBM Operations Analytics - Log Analysis (CVE-2024-22201, CVE-2023-51775)

Summary Apache Solr is used by IBM Operations Analytics - Log Analysis as Indexing Engine server is vulnerable to denial of service. Vulnerability Details CVEID:CVE-2024-22201 DESCRIPTION: Eclipse Jetty is vulnerable to a denial of service, caused by a flaw when an HTTP/2 connection gets TCP...

7.5CVSS6.9AI score0.01433EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/07/30 5:23 p.m.29 views

Security Bulletin: Rational Performance Tester contains vulnerabilities which could affect Eclipse Jetty.

Summary Due to the use of Eclipse Jetty, Rational Performance Tester contains vulnerabilities around request processing that could lead to a potential denial of service attack. Vulnerability Details CVEID:CVE-2024-22201 DESCRIPTION: Eclipse Jetty is vulnerable to a denial of service, caused by a...

7.5CVSS7.6AI score0.01433EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/07/19 12:0 a.m.45 views

Oracle Coherence (Jul 2024 CPU)

The 12.2.1.4.0 and 14.1.1.0.0 versions of Coherence installed on the remote host are affected by multiple vulnerabilities as referenced in the July 2024 CPU advisory. - Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: Third Party Eclipse Jetty. Supported versio...

7.5CVSS6.8AI score0.01433EPSS
Exploits1References4
IBM Security Bulletins
IBM Security Bulletins
added 2024/07/01 3:9 p.m.61 views

Security Bulletin: Multiple Vulnerabilities have been identified in IBM MQ shipped with IBM WebSphere Remote Server

Summary IBM MQ is shipped with IBM WebSphere Remote Server. Information about security vulnerabilities affecting IBM MQ have been published in a security bulletin CVE-2024-25026, CVE-2024-22354, CVE-2024-27268, CVE-2024-22353, CVE-2023-51775, CVE-2024-22329, CVE-2024-31919, CVE-2024-21085,...

8.8CVSS7.4AI score0.01433EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/06/27 12:0 a.m.34 views

IBM MQ 9.0 <= 9.0.0.26 / 9.1 <= 9.1.0.22 / 9.2 <= 9.2.0.26 / 9.3 < 9.4 CD (7158057)

The version of IBM MQ Server running on the remote host is affected by a vulnerability as referenced in the 7158057 advisory. - Jetty is a Java based web server and servlet engine. An HTTP/2 SSL connection that is established and TCP congested will be leaked when it times out. An attacker can cau...

7.5CVSS7.5AI score0.01433EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/06/05 2:47 p.m.52 views

Important: Red Hat Security Advisory: Red Hat Product OCP Tools 4.12 Openshift Jenkins security update

An update for OpenShift Jenkins is now available for Red Hat Product OCP Tools 4.12. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS7.3AI score0.93305EPSS
Exploits4References9
Tenable Nessus
Tenable Nessus
added 2024/06/05 12:0 a.m.63 views

RHEL 8 : Red Hat Product OCP Tools 4.14 OpenShift Jenkins (RHSA-2024:3634)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:3634 advisory. Jenkins is a continuous integration server that monitors the execution of recurring jobs, such as software builds or cron jobs. Security...

9.8CVSS7.7AI score0.93305EPSS
Exploits4References18
Tenable Nessus
Tenable Nessus
added 2024/06/05 12:0 a.m.42 views

RHEL 8 : Red Hat Product OCP Tools 4.12 Openshift Jenkins (RHSA-2024:3635)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:3635 advisory. Jenkins is a continuous integration server that monitors the execution of recurring jobs, such as software builds or cron jobs. Security...

9.8CVSS7.7AI score0.93305EPSS
Exploits4References18
Tenable Nessus
Tenable Nessus
added 2024/06/05 12:0 a.m.48 views

RHEL 8 : Red Hat Product OCP Tools 4.13 OpenShift Jenkins (RHSA-2024:3636)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:3636 advisory. Jenkins is a continuous integration server that monitors the execution of recurring jobs, such as software builds or cron jobs. Security...

9.8CVSS7.7AI score0.93305EPSS
Exploits4References18
IBM Security Bulletins
IBM Security Bulletins
added 2024/05/01 4:16 p.m.31 views

Security Bulletin: IBM App Connect Enterprise and IBM Integration Bus for z/OS are vulnerable to a denial of service due to Eclipse Jetty (CVE-2024-22201)

Summary IBM App Connect Enterprise Toolkit and IBM Integration Bus for z/OS Toolkit are vulnerable to a denial of service due to Eclipse Jetty. This bulletin identifies the steps to take to address the vulnerability. Vulnerability Details CVEID:CVE-2024-22201 DESCRIPTION: Eclipse Jetty is...

7.5CVSS7.3AI score0.01433EPSS
Exploits0Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2024/04/24 4:48 a.m.36 views

Security Bulletin: IBM Sterling Connect:Direct Web Services is vulnerable to a denial of service due to Eclipse Jetty (CVE-2024-22201)

Summary IBM Sterling Connect:Direct Web Services uses Eclipse Jetty. This bulletin identifies the steps to take to address the vulnerability. Vulnerability Details CVEID:CVE-2024-22201 DESCRIPTION: Eclipse Jetty is vulnerable to a denial of service, caused by a flaw when an HTTP/2 connection gets...

7.5CVSS7.2AI score0.01433EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/04/18 12:0 a.m.31 views

Debian dsa-5664 : jetty9 - security update

The remote Debian 11 / 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5664 advisory. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5664-1...

7.5CVSS7.4AI score0.01433EPSS
Exploits0References5
Debian
Debian
added 2024/04/17 9:36 p.m.41 views

[SECURITY] [DSA 5664-1] jetty9 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5664-1 [email protected] https://www.debian.org/security/ Markus Koschany April 17, 2024 https://www.debian.org/security/faq -...

7.5CVSS7.6AI score0.01433EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2024/04/09 10:8 a.m.42 views

Security Bulletin: An Eclipse Jetty vulnerability affects IBM Rational Functional Tester/ IBM DevOps Test UI

Summary There is vulnerability in Eclipse Jetty used by Rational Functional TesterRFT / DevOps Test UI Test UI. RFT/Test UI has addressed the applicable CVE-2024-22201. Vulnerability Details CVEID:CVE-2024-22201 DESCRIPTION: Eclipse Jetty is vulnerable to a denial of service, caused by a flaw whe...

7.5CVSS7.3AI score0.01433EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2024/04/08 12:0 a.m.22 views

Debian: Security Advisory (DLA-3780-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.01433EPSS
Exploits0References2
Debian
Debian
added 2024/04/06 9:7 p.m.48 views

[SECURITY] [DLA 3780-1] jetty9 security update

Debian LTS Advisory DLA-3780-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany April 06, 2024 https://wiki.debian.org/LTS Package : jetty9 Version : 9.4.50-4+deb10u2 CVE ID : CVE-2024-22201 Debian Bug : 1064923 Jetty 9 is a Java based web server and servlet engine...

7.5CVSS6.8AI score0.01433EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/04/06 12:0 a.m.28 views

Debian dla-3780 : jetty9 - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3780 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3780-1 [email protected] https://www.debian.org/lts/security/...

7.5CVSS7.4AI score0.01433EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/04/03 12:0 a.m.56 views

FreeBSD : jenkins -- HTTP/2 denial of service vulnerability in bundled Jetty (2e3bea0c-f110-11ee-bc57-00e081b7aa2d)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 2e3bea0c-f110-11ee-bc57-00e081b7aa2d advisory. - Jetty is a Java based web server and servlet engine. An HTTP/2 SSL connection that is established and...

7.5CVSS7.5AI score0.01433EPSS
Exploits0References3
Rows per page
Query Builder