| CVE-2016-4800 |
critical |
9.8 |
9.8 |
9y ago |
Jetty contains an alias issue that could allow unauthenticated remote code execution due to specially crafted request |
|
| CVE-2011-4461 |
medium |
5.3 |
5.3 |
15y ago |
Improper Input Validation in Jetty |
|
| CVE-2022-2191 |
unknown |
— |
— |
4y ago |
Jetty SslConnection does not release pooled ByteBuffers in case of errors |
|
| CVE-2020-27218 |
unknown |
— |
— |
6y ago |
Buffer not correctly recycled in Gzip Request inflation |
|
| CVE-2019-17632 |
unknown |
— |
— |
7y ago |
Unescaped exception messages in error responses in Jetty |
|
| CVE-2019-10241 |
unknown |
— |
— |
7y ago |
Cross-site Scripting in Eclipse Jetty |
|
| CVE-2017-7658 |
unknown |
— |
— |
8y ago |
Jetty vulnerable to authorization bypass due to inconsistent HTTP request handling (HTTP Request Smuggling) |
|
| CVE-2017-7656 |
unknown |
— |
— |
8y ago |
Jetty vulnerable to cache poisoning due to inconsistent HTTP request handling (HTTP Request Smuggling) |
|