Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Eclipse Jetty Multiple Vulnerabilities (Jul 2022) - Windows
Information
Severity
Severity
High
Family
Family
Denial of Service
CVSSv2 Base
CVSSv2 Base
7.8
CVSSv2 Vector
CVSSv2 Vector
AV:N/AC:L/Au:N/C:N/I:N/A:C
Solution Type
Solution Type
Vendor Patch
Created
Created
1 year ago
Modified
Modified
1 year ago
Summary
Eclipse Jetty is prone to multiple vulnerabilities.
Insight
Insight
The following vulnerabilities exist: - CVE-2022-2047: Invalid URI parsing may produce invalid HttpURI.authority - CVE-2022-2048: Invalid HTTP/2 requests can lead to denial of service
Affected Software
Affected Software
Eclipse Jetty version 9.4.46 and prior, version 10.0.x through 10.0.9 and 11.0.x through 11.0.9.
Detection Method
Detection Method
Checks if a vulnerable version is present on the target host.
Solution
Solution
Update to version 9.4.47, 10.0.10, 11.0.10 or later.