Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
eclipse jetty 11.0.0 vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2020-27223
In Eclipse Jetty 9.4.6.v20170531 to 9.4.36.v20210114 (inclusive), 10.0.0, and 11.0.0 when Jetty handles a request containing multiple Accept headers with a large number of “quality” (i.e. q) parameters, the server may enter a denial of service (DoS) state due to high ...
Eclipse Jetty
Eclipse Jetty 9.4.6
Eclipse Jetty 9.4.36
Eclipse Jetty 10.0.0
Eclipse Jetty 11.0.0
Apache Nifi 1.13.0
Apache Spark 3.1.1
Netapp E-series Santricity Os Controller
Netapp E-series Santricity Web Services -
Netapp Element Plug-in For Vcenter Server -
Netapp Hci -
Netapp Hci Management Node -
1 Github repository
7.5
CVSSv3
CVE-2022-2191
In Eclipse Jetty versions 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, SslConnection does not release ByteBuffers from configured ByteBufferPool in case of error code paths.
Eclipse Jetty
4.8
CVSSv3
CVE-2020-27218
In Eclipse Jetty version 9.4.0.RC0 to 9.4.34.v20201102, 10.0.0.alpha0 to 10.0.0.beta2, and 11.0.0.alpha0 to 11.0.0.beta2, if GZIP request body inflation is enabled and requests from different clients are multiplexed onto a single connection, and if an attacker can send a request ...
Eclipse Jetty
Eclipse Jetty 10.0.0
Eclipse Jetty 11.0.0
Netapp Oncommand System Manager
Netapp Snap Creator Framework -
Oracle Blockchain Platform
Oracle Communications Converged Application Server - Service Controller 6.2
Oracle Communications Offline Mediation Controller 12.0.0.3.0
Oracle Communications Pricing Design Center 12.0.0.3.0
Oracle Communications Services Gatekeeper 7.0
Oracle Communications Session Route Manager
Oracle Flexcube Private Banking 12.0.0
2.7
CVSSv3
CVE-2021-28163
In Eclipse Jetty 9.4.32 to 9.4.38, 10.0.0.beta2 to 10.0.1, and 11.0.0.beta2 to 11.0.1, if a user uses a webapps directory that is a symlink, the contents of the webapps directory is deployed as a static webapp, inadvertently serving the webapps themselves and anything else that m...
Eclipse Jetty
Eclipse Jetty 10.0.0
Eclipse Jetty 10.0.1
Eclipse Jetty 11.0.0
Eclipse Jetty 11.0.1
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Apache Ignite
Apache Solr 8.8.1
Netapp Cloud Manager -
Netapp E-series Performance Analyzer -
7
CVSSv3
CVE-2020-27216
In Eclipse Jetty versions 1.0 thru 9.4.32.v20200930, 10.0.0.alpha1 thru 10.0.0.beta2, and 11.0.0.alpha1 thru 11.0.0.beta2O, on Unix like systems, the system's temporary directory is shared between all users on that system. A collocated user can observe the process of creatin...
Eclipse Jetty
Eclipse Jetty 10.0.0
Eclipse Jetty 11.0.0
Netapp Snap Creator Framework -
Netapp Snapcenter -
Netapp Vasa Provider
Netapp Virtual Storage Console
Netapp Storage Replication Adapter
Oracle Communications Application Session Controller 3.9m0p2
Oracle Communications Converged Application Server - Service Controller 6.2
Oracle Communications Element Manager
Oracle Communications Offline Mediation Controller 12.0.0.3.0
7.5
CVSSv3
CVE-2023-36478
Eclipse Jetty provides a web server and servlet container. In versions 11.0.0 up to and including 11.0.15, 10.0.0 up to and including 10.0.15, and 9.0.0 up to and including 9.4.52, an integer overflow in `MetaDataBuilder.checkSize` allows for HTTP/2 HPACK header values to exceed ...
Eclipse Jetty
Jenkins Jenkins
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Debian Debian Linux 12.0
2.7
CVSSv3
CVE-2022-2047
In Eclipse Jetty versions 9.4.0 thru 9.4.46, and 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, the parsing of the authority segment of an http scheme URI, the Jetty HttpURI class improperly detects an invalid input as a hostname. This can lead to failures in a Proxy scenar...
Eclipse Jetty
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Element Plug-in For Vcenter Server -
Netapp Management Services For Element Software And Netapp Hci -
Netapp Snapcenter -
Netapp Solidfire & Hci Storage Node -
Netapp Hci Compute Node -
7.5
CVSSv3
CVE-2021-28165
In Eclipse Jetty 7.2.2 to 9.4.38, 10.0.0.alpha0 to 10.0.1, and 11.0.0.alpha0 to 11.0.1, CPU usage can reach 100% upon receiving a large invalid TLS frame.
Eclipse Jetty
Oracle Autovue For Agile Product Lifecycle Management 21.0.2
Oracle Communications Cloud Native Core Policy 1.14.0
Oracle Communications Element Manager 8.2.2
Oracle Communications Services Gatekeeper 7.0
Oracle Communications Session Report Manager
Oracle Communications Session Route Manager
Oracle Rest Data Services
Oracle Siebel Core - Automation
Jenkins Jenkins
Netapp Cloud Manager
Netapp E-series Performance Analyzer
1 Github repository
7.5
CVSSv3
CVE-2023-44487
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
Ietf Http 2.0
Nghttp2 Nghttp2
Netty Netty
Envoyproxy Envoy 1.24.10
Envoyproxy Envoy 1.25.9
Envoyproxy Envoy 1.26.4
Envoyproxy Envoy 1.27.0
Eclipse Jetty
Caddyserver Caddy
Golang Go
Golang Http2
Golang Networking
30 Github repositories
2 Articles
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
CVE-2025-23629
CVE-2024-52331
CVE-2025-0693
precious metals charts and widgets for wordpress
neofix
simple downloads list
CVE-2025-23544
CVE-2025-21298
client side
memory leak
CVE-2019-5418
XSS
deebot x5 pro plus
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started