2 matches found
PT-2023-25586 · Eclipse +6 · Eclipse Jetty +8
Name of the Vulnerable Software and Affected Versions: Eclipse Jetty versions 9.0.0 through 9.4.52 Eclipse Jetty versions 10.0.0 through 10.0.15 Eclipse Jetty versions 11.0.0 through 11.0.15 Description: The issue is caused by an integer overflow in MetaDataBuilder.checkSize, allowing HTTP/2 HPAC...
Jetty 10.0.0 < 10.0.0.beta3 Information Disclosure
The version of Jetty installed on the remote host suffers from a flaw where the buffer is not correctly recycled in Gzip request inflation. This may permit an attacker to inject data into the body of the subsequent request Note that the scanner has not tested for this issue but has instead relied...