Where
-Infinity
0

Trending

Last week
Last month
Last year

Eclipse JettyIn Eclipse Jetty, the HTTP/1.1 parser is vulnerable to request smuggling when chunk extensions are u…

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2458187

Eclipse JettyHTTP Request Smuggling via Chunked Extension Quoted-String Parsing

Risk 66
Severity
9.1
First published (updated )
CVE-2026-2332

Eclipse JettyIn Eclipse Jetty, the class JASPIAuthenticator initiates the authentication checks, which set two Th…

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2456519

maven/org.eclipse.jetty.ee10:jetty-ee10In Eclipse Jetty, the class JASPIAuthenticator initiates the authentication checks, which set two Th…

Risk 41
Severity
7.4
EPSS
0.02%
First published (updated )
CVE-2026-5795

Eclipse JettyIn Eclipse Jetty, versions 12.0.0-12.0.31 and 12.1.0-12.0.5, class GzipHandler exposes a vulnerabili…

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2444815
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Eclipse JettyIn Eclipse Jetty, versions 12.0.0-12.0.31 and 12.1.0-12.0.5, class GzipHandler exposes a vulnerabili…

Risk 43
Severity
7.5
First published (updated )
CVE-2026-1605

maven/org.eclipse.jetty:jetty-httpInput Validation

Risk 40
Severity
6.5
First published (updated )
CVE-2025-11143

maven/org.springframework:spring-webmvcPath traversal vulnerability on non-compliant Servlet containers

Risk 35
Severity
5.9
First published (updated )
CVE-2025-41242

Eclipse JettyMadeYouReset HTTP/2 vulnerability

Risk 49
Severity
7.7
First published (updated )
CVE-2025-5115

Eclipse JettyIn Eclipse Jetty versions 9.4.0 to 9.4.56 a buffer can be incorrectly released when confronted with …

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2365135
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Eclipse JettyEclipse Jetty GZIP buffer release

Risk 47
Severity
7.2
First published (updated )
CVE-2024-13009

Eclipse Foundation Jetty 12End of life details

First published (updated )
latest-version-eclipse-jetty-12

Eclipse Foundation Jetty 12End of life details

First published (updated )
EOL-eclipse-jetty-12

Eclipse JettySSRF

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-2318563

Eclipse JettyJetty ThreadLimitHandler.getRemote() vulnerable to remote DoS attacks

Risk 28
Severity
6.5
EPSS
0.04%
First published (updated )
CVE-2024-8184
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Eclipse JettyJetty URI parsing of invalid authority

Risk 28
Severity
5.3
First published (updated )
CVE-2024-6763

Eclipse JettyJetty DOS vulnerability on DosFilter

Risk 31
Severity
7.5
EPSS
0.04%
First published (updated )
CVE-2024-9823

Eclipse JettyJetty connection leaking on idle timeout when TCP congested

Risk 46
Severity
7.5
First published (updated )
CVE-2024-22201

maven/org.eclipse.jetty.http2:http2-hpackHTTP/2 HPACK integer overflow and buffer allocation

Risk 46
Severity
7.5
First published (updated )
CVE-2023-36478

Apache Tomcat- Rapid Reset HTTP/2 vulnerability

Risk 65
Severity
7.5
Exploited
Zeroday
First published (updated )
CVE-2023-44487
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat/jettyJetty's OpenId Revoked authentication allows one request

Risk 24
Severity
4.3
First published (updated )
CVE-2023-41900

Eclipse JettyJetty accepts "+" prefixed value in Content-Length

Risk 28
Severity
5.3
First published (updated )
CVE-2023-40167

Eclipse JettyJetty vulnerable to errant command quoting in CGI Servlet

Risk 23
Severity
4.3
First published (updated )
CVE-2023-36479

Eclipse JettyInfoleak

Risk 28
Severity
5.3
First published (updated )
CVE-2023-26049

maven/org.eclipse.jetty:jetty-serverOutOfMemoryError for large multipart without filename in Eclipse Jetty

Risk 27
Severity
5.3
First published (updated )
CVE-2023-26048
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat/jettyInfoleak

Risk 28
Severity
5.3
First published (updated )
CVE-2021-34429

redhat/jettyEclipse Jetty could allow a physical attacker to bypass security restrictions, caused by a session I…

Risk 25
Severity
3.6
First published (updated )
CVE-2021-34428

redhat/jettyInfoleak

Risk 28
Severity
5.3
First published (updated )
CVE-2021-28169

Eclipse JettyInfoleak

Risk 22
Severity
2.7
First published (updated )
CVE-2021-28163

Eclipse JettyInput Validation, Infoleak

Risk 28
Severity
5.3
First published (updated )
CVE-2021-28164
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203