org.eclipse.jetty:jetty-server vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-1605Highorg.eclipse.jetty:jetty-server: The Eclipse Jetty Server Artifact has a Gzip request memory leak CVE-2024-13009Highorg.eclipse.jetty:jetty-server: **UNSUPPORTED WHEN ASSIGNED** GzipHandler causes part of request body to be seen as request body of a separate requestCVE-2024-8184Mediumorg.eclipse.jetty:jetty-server: Eclipse Jetty's ThreadLimitHandler.getRemote() vulnerable to remote DoS attacksCVE-2023-26048Mediumorg.eclipse.jetty:jetty-server: OutOfMemoryError for large multipart without filename in Eclipse JettyCVE-2023-26049Loworg.eclipse.jetty:jetty-server: Eclipse Jetty's cookie parsing of quoted values can exfiltrate values from other cookiesCVE-2022-2191Highorg.eclipse.jetty:jetty-server: Jetty SslConnection does not release pooled ByteBuffers in case of errorsCVE-2011-4461Mediumorg.eclipse.jetty:jetty-server: Improper Input Validation in JettyCVE-2006-6969Mediumorg.eclipse.jetty:jetty-server: Jetty Uses Predictable Session IdentifiersCVE-2021-34428Loworg.eclipse.jetty:jetty-server: SessionListener can prevent a session from being invalidated breaking logoutCVE-2021-28165Highorg.eclipse.jetty:jetty-server: Jetty vulnerable to incorrect handling of invalid large TLS frame, exhausting CPU resourcesCVE-2020-27223Mediumorg.eclipse.jetty:jetty-server: DOS vulnerability for Quoted Quality CSV headersCVE-2020-27218Mediumorg.eclipse.jetty:jetty-server: Buffer not correctly recycled in Gzip Request inflationCVE-2019-17638Criticalorg.eclipse.jetty:jetty-server: Operation on a Resource after Expiration or Release in Jetty ServerCVE-2019-17632Mediumorg.eclipse.jetty:jetty-server: Unescaped exception messages in error responses in JettyCVE-2019-10246Mediumorg.eclipse.jetty:jetty-server: Information Exposure vulnerability in Eclipse JettyCVE-2019-10247Mediumorg.eclipse.jetty:jetty-server: Installation information leak in Eclipse JettyCVE-2019-10241Mediumorg.eclipse.jetty:jetty-server: Cross-site Scripting in Eclipse JettyCVE-2018-12545Highorg.eclipse.jetty:jetty-server: Uncontrolled Resource Consumption in org.eclipse.jetty:jetty-serverCVE-2015-2080Highorg.eclipse.jetty:jetty-server: Jetty vulnerable to exposure of sensitive information to unauthenticated remote usersCVE-2017-7658Criticalorg.eclipse.jetty:jetty-server: Jetty vulnerable to authorization bypass due to inconsistent HTTP request handling (HTTP Request Smuggling)CVE-2017-7656Highorg.eclipse.jetty:jetty-server: Jetty vulnerable to cache poisoning due to inconsistent HTTP request handling (HTTP Request Smuggling)CVE-2016-4800Criticalorg.eclipse.jetty:jetty-server: Jetty contains an alias issue that could allow unauthenticated remote code execution due to specially crafted requestCVE-2018-12536Mediumorg.eclipse.jetty:jetty-server: Eclipse Jetty Server generates error message containing sensitive informationCVE-2017-9735Highorg.eclipse.jetty:jetty-server: Jetty vulnerable to exposure of sensitive information due to observable discrepancyCVE-2017-7657Criticalorg.eclipse.jetty:jetty-server: Critical severity vulnerability that affects org.eclipse.jetty:jetty-server

Stop the waste.
Protect your environment with Kodem.