org.eclipse.jetty.ee10:jetty-ee10-servlets

Maven2 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting org.eclipse.jetty.ee10:jetty-ee10-servletspage 1 of 1

CVE-2023-36479LOWCVSS 3.5EG 3.5✓ Fixed in 12.0.0-beta2
2023-09-15
Eclipse Jetty Canonical Repository is the canonical repository for the Jetty project. Users of the CgiServlet with a very specific command structure may have the wrong command executed. If a user sends a request to a org.eclipse.jetty.serv…
CVE-2024-9823MEDIUMCVSS 5.3EG 5.3✓ Fixed in 12.0.3
2024-10-14
vulnerable: 12.0.0, 12.0.1, 12.0.2
There exists a security vulnerability in Jetty's DosFilter which can be exploited by unauthorized users to cause remote denial-of-service (DoS) attack on the server using DosFilter. By repeatedly sending crafted requests, attackers can tri…

Check whether org.eclipse.jetty.ee10:jetty-ee10-servlets is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for org.eclipse.jetty.ee10:jetty-ee10-servlets CVEs against the assets you own.

Start Free Scan →