Homepage

org.eclipse.jetty:jetty-server vulnerabilities

Licenses: (Apache-2.0 OR EPL-2.0) | (Apache-2.0 OR EPL-1.0)
Published: 16 years ago Last updated: 22 days ago Latest version: 12.1.7 Latest non-vulnerable version: 12.1.7

License

(Apache-2.0 OR EPL-2.0)
[12.0.30,12.1.0.alpha0);
[12.1.4,);
(Apache-2.0 OR EPL-1.0)
[12.1.0.alpha0,12.1.4);
[7.0.0.M0,12.0.30);
Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the org.eclipse.jetty:jetty-server package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • M
Interpretation Conflict

[9.4.0.M0,12.0.31)[12.1.0.alpha0,12.1.5)
  • H
Allocation of Resources Without Limits or Throttling

[12.0.0.alpha0,12.0.32)[12.1.0.alpha0,12.1.6)
  • M
Improper Resource Shutdown or Release

[9.4.0.M0,9.4.57.v20241219)
  • H
Denial of Service (DoS)

[9.3.12,9.4.56)[10.0.0,10.0.24)[11.0.0,11.0.24)[12.0.0,12.0.9)
  • M
Improper Validation of Syntactic Correctness of Input

[,9.4.57.v20241219)[10.0.0,12.0.12)
  • M
Directory Traversal

[7.0.0.M0,7.0.0.M2)
  • L
Information Exposure

[,9.4.51)[10.0.0,10.0.14)[11.0.0,11.0.14)[12.0.0alpha0,12.0.0.beta0)
  • M
Denial of Service (DoS)

[,9.4.51)[10.0.0,10.0.14)[11.0.0,11.0.14)[12.0.0.alpha0,12.0.0.beta0)
  • H
Improper Resource Shutdown or Release

[10.0.0,10.0.10)[11.0.0,11.0.10)
  • L
Information Exposure

[11.0.0,11.0.3)[10.0.0,10.0.3)[,9.4.41)
  • M
Denial of Service (DoS)

[9.4.6.v20170531,9.4.37.v20210219)[10.0.0,10.0.1)[11.0.0,11.0.1)
  • M
HTTP Request Smuggling

[9.4.0.RC0,9.4.35.v20201120)[10.0.0.alpha0,10.0.0.beta3)[11.0.0.alpha0,11.0.0.beta3)
  • H
Operation on a Resource after Expiration or Release

[9.4.27.v20200227,9.4.30.v20200611)
  • M
Cross-site Scripting (XSS)

[9.4.21.v20190926,9.4.24.v20191120)
  • M
Information Exposure

[7.0.0.M0,9.2.28.v20190418)[9.3.0.M0,9.3.27.v20190418)[9.4.0.M0,9.4.17.v20190418)
  • M
Cross-site Scripting (XSS)

[9.2.0.M0,9.2.27.v20190403)[9.3.0.M0,9.3.26.v20190403)[9.4.15.v20190215,9.4.16.v20190411)
  • H
Web Cache Poisoning

[,9.3.24.v20180605)[9.4.0.M0,9.4.11.v20180605)
  • C
Authorization Bypass

(8.2.0.v20160908,9.2.25.v20180606)[9.3.0.M0,9.3.24.v20180605)[9.4.0.M0,9.4.11.v20180605)
  • M
Information Exposure

[9.3.0.RC0,9.3.24.v20180605)[9.4.0.M0,9.4.11.v20180605)
  • H
Session Hijacking

[9.4.0.RC0,9.4.9.v20180320)
  • M
Cryptographic Issues

[,8.1.0.v20120127)

Package versions

429 VERSIONS IN TOTAL See all versions
versionpublisheddirect vulnerabilities
12.1.74 Mar, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
12.1.627 Jan, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
12.1.53 Dec, 2025
  • 0
    C
  • 1
    H
  • 0
    M
  • 0
    L
12.1.410 Nov, 2025
  • 0
    C
  • 1
    H
  • 1
    M
  • 0
    L
12.1.316 Oct, 2025
  • 0
    C
  • 1
    H
  • 1
    M
  • 0
    L
12.1.27 Oct, 2025
  • 0
    C
  • 1
    H
  • 1
    M
  • 0
    L
12.1.18 Sep, 2025
  • 0
    C
  • 1
    H
  • 1
    M
  • 0
    L
12.1.015 Aug, 2025
  • 0
    C
  • 1
    H
  • 1
    M
  • 0
    L
12.1.0.beta312 Aug, 2025
  • 0
    C
  • 1
    H
  • 1
    M
  • 0
    L
12.1.0.beta218 Jul, 2025
  • 0
    C
  • 1
    H
  • 1
    M
  • 0
    L