Download
| Alert*
oval:org.secpod.oval:def:609223
Two security vulnerabilities were discovered in Jetty, a Java servlet engine and webserver. CVE-2022-2047 In Eclipse Jetty the parsing of the authority segment of an http scheme URI, the Jetty HttpURI class improperly detects an invalid input as a hostname. This can lead to failures in a Proxy scena ... oval:org.secpod.oval:def:88386 Two security vulnerabilities were discovered in Jetty, a Java servlet engine and webserver. CVE-2022-2047 In Eclipse Jetty the parsing of the authority segment of an http scheme URI, the Jetty HttpURI class improperly detects an invalid input as a hostname. This can lead to failures in a Proxy scena ... oval:org.secpod.oval:def:99493 The host is installed with Jenkins LTS before 2.361.1 or Jenkins rolling release before 2.363 is prone to a denial of service vulnerability. The flaw is present in the application, which fails to properly handle bundled Jetty. Successful exploitation could allow unauthenticated attackers to make the ... oval:org.secpod.oval:def:99864 The host is installed with Jenkins LTS before 2.361.1 or Jenkins rolling release before 2.363 is prone to a denial of service vulnerability. The flaw is present in the application, which fails to properly handle bundled Jetty. Successful exploitation could allow unauthenticated attackers to make the ... |