jetty9 vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the jetty9 package. This does not include vulnerabilities belonging to this package’s dependencies.

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Vulnerability	Vulnerable Version
L Resource Exhaustion	<9.4.57-1.1
M Allocation of Resources Without Limits or Throttling	<9.4.56-1
M Improper Authentication	<9.4.52-1
M CVE-2020-27218	<9.4.35-1
M Cross-site Scripting (XSS)	<9.4.26-1
L CVE-2017-7656	<9.2.25-1
M Cross-site Scripting (XSS)	<9.4.18-2
M Information Exposure	<9.4.39-2
M Allocation of Resources Without Limits or Throttling	<9.4.54-1
M Resource Exhaustion	<9.4.52-1
H CVE-2023-44487	<9.4.53-1
H CVE-2020-27216	<9.4.33-1
M Resource Exhaustion	<9.4.38-1
H Allocation of Resources Without Limits or Throttling	<9.4.54-1
H Information Exposure	<9.2.22-1
C Operation on a Resource after Expiration or Release	<9.4.31-1
L CVE-2023-36479	<9.4.52-1
L Insufficient Session Expiration	<9.4.39-2
H CVE-2022-2048	<9.4.48-1
M Information Exposure	<9.4.52-1
M Information Exposure	<9.4.18-2
L HTTP Request Smuggling	<9.2.25-1
L Integer Overflow or Wraparound	<9.2.25-1
L Link Following	<9.4.39-1
H CVE-2024-9823	<9.4.54-1
H Integer Overflow or Wraparound	<9.4.53-1
L CVE-2024-13009	<9.4.57-1
M Information Exposure	<9.4.39-1
L CVE-2018-12536	<9.2.25-1
L Improper Input Validation	<9.4.48-1
L CVE-2024-6763	*
M Improper Handling of Length Parameter Inconsistency	<9.4.52-1
M Information Exposure	<9.4.39-3
H Resource Exhaustion	<9.4.39-1