Package impact
Maven / org.eclipse.jetty.http2:jetty-http2-common
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-44487 | high | 7.5 | 9.0 | 3y ago | HTTP/2 contains a rapid reset vulnerability that allows for a distributed denial-of-service attack (DDoS). | |||
| CVE-2025-5115 | unknown | — | — | 9mo ago | Eclipse Jetty affected by MadeYouReset HTTP/2 vulnerability | |||
| CVE-2025-1948 | unknown | — | — | 1y ago | Eclipse Jetty HTTP/2 client can force the server to allocate a humongous byte buffer that may lead to OoM and subsequently the JVM to exit | |||
| CVE-2024-22201 | unknown | — | — | 2y ago | Connection leaking on idle timeout when TCP congested |