jetty9 vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the jetty9 package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
L CVE-2024-22201	<9.4.50-4+deb10u2
H Integer Overflow or Wraparound	<9.4.50-4+deb10u1
H CVE-2023-44487	<9.4.50-4+deb10u1
M Improper Neutralization	<9.4.16-0+deb10u3
M Improper Handling of Length Parameter Inconsistency	<9.4.16-0+deb10u3
M Information Exposure	<9.4.16-0+deb10u3
M Resource Exhaustion	<9.4.16-0+deb10u3
H CVE-2022-2048	<9.4.16-0+deb10u2
L Improper Input Validation	<9.4.16-0+deb10u2
L Insufficient Session Expiration	<9.4.16-0+deb10u1
M Information Exposure	<9.4.16-0+deb10u1
H Resource Exhaustion	<9.4.16-0+deb10u1
M Resource Exhaustion	<9.4.16-0+deb10u1
M CVE-2020-27218	<9.4.50-4+deb10u1
H CVE-2020-27216	<9.4.16-0+deb10u1
M Information Exposure	<9.4.16-0+deb10u1
M Cross-site Scripting (XSS)	<9.4.16-0+deb10u1
L CVE-2018-12536	<9.2.25-1
L HTTP Request Smuggling	<9.2.25-1
L Integer Overflow or Wraparound	<9.2.25-1
L CVE-2017-7656	<9.2.25-1
H Information Exposure	<9.2.22-1