Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.33.v20201020

Type maven

Namespace org.eclipse.jetty

Name jetty-servlets

Version 9.4.33.v20201020

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 9.4.54.v20240208

Latest_non_vulnerable_version 11.0.18

Affected_by_vulnerabilities

url VCID-dbg4-v6wv-6kd3

vulnerability_id VCID-dbg4-v6wv-6kd3

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40167.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40167.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-40167

reference_id

reference_type

scores

value	0.04575
scoring_system	epss
scoring_elements	0.89455
published_at	2026-06-11T12:55:00Z

value	0.04575
scoring_system	epss
scoring_elements	0.89496
published_at	2026-06-14T12:55:00Z

value	0.04575
scoring_system	epss
scoring_elements	0.89497
published_at	2026-06-13T12:55:00Z

value	0.04575
scoring_system	epss
scoring_elements	0.8949
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-40167

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26048
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26048

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26049
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26049

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36479
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36479

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40167
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40167

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41900
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41900

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/eclipse/jetty.project

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/eclipse/jetty.project

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2023-40167

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2023-40167

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2239634
reference_id	2239634
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2239634

reference_url

https://www.debian.org/security/2023/dsa-5507

reference_id

dsa-5507

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T18:49:57Z/

url

https://www.debian.org/security/2023/dsa-5507

reference_url

https://github.com/advisories/GHSA-hmr7-m48g-48f6

reference_id

GHSA-hmr7-m48g-48f6

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-hmr7-m48g-48f6

reference_url

https://github.com/eclipse/jetty.project/security/advisories/GHSA-hmr7-m48g-48f6

reference_id

GHSA-hmr7-m48g-48f6

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T18:49:57Z/

url

https://github.com/eclipse/jetty.project/security/advisories/GHSA-hmr7-m48g-48f6

reference_url

https://lists.debian.org/debian-lts-announce/2023/09/msg00039.html

reference_id

msg00039.html

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T18:49:57Z/

url

https://lists.debian.org/debian-lts-announce/2023/09/msg00039.html

reference_url

https://www.rfc-editor.org/rfc/rfc9110#section-8.6

reference_id

rfc9110#section-8.6

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-25T18:49:57Z/

url

https://www.rfc-editor.org/rfc/rfc9110#section-8.6

reference_url	https://access.redhat.com/errata/RHSA-2023:5441
reference_id	RHSA-2023:5441
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5441

reference_url	https://access.redhat.com/errata/RHSA-2023:5780
reference_id	RHSA-2023:5780
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5780

reference_url	https://access.redhat.com/errata/RHSA-2023:5946
reference_id	RHSA-2023:5946
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5946

reference_url	https://access.redhat.com/errata/RHSA-2023:7247
reference_id	RHSA-2023:7247
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7247

reference_url	https://access.redhat.com/errata/RHSA-2023:7678
reference_id	RHSA-2023:7678
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7678

reference_url	https://access.redhat.com/errata/RHSA-2023:7697
reference_id	RHSA-2023:7697
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7697

reference_url	https://access.redhat.com/errata/RHSA-2024:0778
reference_id	RHSA-2024:0778
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0778

reference_url	https://access.redhat.com/errata/RHSA-2024:0797
reference_id	RHSA-2024:0797
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0797

reference_url	https://access.redhat.com/errata/RHSA-2024:2010
reference_id	RHSA-2024:2010
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2010

reference_url	https://access.redhat.com/errata/RHSA-2024:3354
reference_id	RHSA-2024:3354
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3354

fixed_packages

url pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.52.v20230823

purl pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.52.v20230823

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-khwg-3pxs-gqb2

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.52.v20230823

url pkg:maven/org.eclipse.jetty/jetty-servlets@10.0.16

purl pkg:maven/org.eclipse.jetty/jetty-servlets@10.0.16

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7mms-qgns-uqhx

vulnerability	VCID-khwg-3pxs-gqb2

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-servlets@10.0.16

url pkg:maven/org.eclipse.jetty/jetty-servlets@11.0.16

purl pkg:maven/org.eclipse.jetty/jetty-servlets@11.0.16

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7mms-qgns-uqhx

vulnerability	VCID-khwg-3pxs-gqb2

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-servlets@11.0.16

aliases CVE-2023-40167, GHSA-hmr7-m48g-48f6

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dbg4-v6wv-6kd3

url VCID-jpta-ajvd-9ufz

vulnerability_id VCID-jpta-ajvd-9ufz

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-41900.json

reference_id

reference_type

scores

value	3.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-41900.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-41900

reference_id

reference_type

scores

value	0.00141
scoring_system	epss
scoring_elements	0.34008
published_at	2026-06-11T12:55:00Z

value	0.00141
scoring_system	epss
scoring_elements	0.34188
published_at	2026-06-14T12:55:00Z

value	0.00141
scoring_system	epss
scoring_elements	0.34208
published_at	2026-06-13T12:55:00Z

value	0.00141
scoring_system	epss
scoring_elements	0.34184
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-41900

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26048
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26048

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26049
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26049

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36479
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36479

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40167
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40167

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41900
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41900

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/eclipse/jetty.project

reference_id

reference_type

scores

value	3.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://github.com/eclipse/jetty.project

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2023-41900

reference_id

reference_type

scores

value	3.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2023-41900

reference_url

https://security.netapp.com/advisory/ntap-20231110-0004

reference_id

reference_type

scores

value	3.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20231110-0004

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2247052
reference_id	2247052
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2247052

reference_url

https://github.com/eclipse/jetty.project/pull/9528

reference_id

9528

reference_type

scores

value	3.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N

value	LOW
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T16:17:02Z/

url

https://github.com/eclipse/jetty.project/pull/9528

reference_url

https://github.com/eclipse/jetty.project/pull/9660

reference_id

9660

reference_type

scores

value	3.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N

value	LOW
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T16:17:02Z/

url

https://github.com/eclipse/jetty.project/pull/9660

reference_url

https://www.debian.org/security/2023/dsa-5507

reference_id

dsa-5507

reference_type

scores

value	3.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N

value	LOW
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T16:17:02Z/

url

https://www.debian.org/security/2023/dsa-5507

reference_url

https://github.com/advisories/GHSA-pwh8-58vv-vw48

reference_id

GHSA-pwh8-58vv-vw48

reference_type

scores

value	LOW
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-pwh8-58vv-vw48

reference_url

https://github.com/eclipse/jetty.project/security/advisories/GHSA-pwh8-58vv-vw48

reference_id

GHSA-pwh8-58vv-vw48

reference_type

scores

value	3.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N

value	LOW
scoring_system	cvssv3.1_qr
scoring_elements

value	LOW
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T16:17:02Z/

url

https://github.com/eclipse/jetty.project/security/advisories/GHSA-pwh8-58vv-vw48

reference_url

https://security.netapp.com/advisory/ntap-20231110-0004/

reference_id

ntap-20231110-0004

reference_type

scores

value	3.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T16:17:02Z/

url

https://security.netapp.com/advisory/ntap-20231110-0004/

reference_url	https://access.redhat.com/errata/RHSA-2023:7247
reference_id	RHSA-2023:7247
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7247

fixed_packages

url pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.52.v20230823

purl pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.52.v20230823

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-khwg-3pxs-gqb2

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.52.v20230823

url pkg:maven/org.eclipse.jetty/jetty-servlets@10.0.16

purl pkg:maven/org.eclipse.jetty/jetty-servlets@10.0.16

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7mms-qgns-uqhx

vulnerability	VCID-khwg-3pxs-gqb2

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-servlets@10.0.16

url pkg:maven/org.eclipse.jetty/jetty-servlets@11.0.16

purl pkg:maven/org.eclipse.jetty/jetty-servlets@11.0.16

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7mms-qgns-uqhx

vulnerability	VCID-khwg-3pxs-gqb2

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-servlets@11.0.16

aliases CVE-2023-41900, GHSA-pwh8-58vv-vw48

risk_score 1.6

exploitability 0.5

weighted_severity 3.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jpta-ajvd-9ufz

url VCID-khwg-3pxs-gqb2

vulnerability_id VCID-khwg-3pxs-gqb2

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-9823.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-9823.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-9823

reference_id

reference_type

scores

value	0.0068
scoring_system	epss
scoring_elements	0.72074
published_at	2026-06-11T12:55:00Z

value	0.0068
scoring_system	epss
scoring_elements	0.72166
published_at	2026-06-14T12:55:00Z

value	0.0068
scoring_system	epss
scoring_elements	0.7217
published_at	2026-06-13T12:55:00Z

value	0.0068
scoring_system	epss
scoring_elements	0.72159
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-9823

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-9823
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-9823

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/jetty/jetty.project

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/jetty/jetty.project

reference_url

https://lists.debian.org/debian-lts-announce/2025/04/msg00001.html

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.debian.org/debian-lts-announce/2025/04/msg00001.html

reference_url

https://security.netapp.com/advisory/ntap-20250306-0006

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20250306-0006

reference_url

https://github.com/jetty/jetty.project/issues/1256

reference_id

1256

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-15T17:46:11Z/

url

https://github.com/jetty/jetty.project/issues/1256

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2318565
reference_id	2318565
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2318565

reference_url

https://gitlab.eclipse.org/security/cve-assignement/-/issues/39

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-15T17:46:11Z/

url

https://gitlab.eclipse.org/security/cve-assignement/-/issues/39

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2024-9823

reference_id

CVE-2024-9823

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2024-9823

reference_url

https://github.com/jetty/jetty.project/security/advisories/GHSA-7hcf-ppf8-5w5h

reference_id

GHSA-7hcf-ppf8-5w5h

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-15T17:46:11Z/

url

https://github.com/jetty/jetty.project/security/advisories/GHSA-7hcf-ppf8-5w5h

reference_url

https://github.com/advisories/GHSA-j26w-f9rq-mr2q

reference_id

GHSA-j26w-f9rq-mr2q

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-j26w-f9rq-mr2q

reference_url	https://access.redhat.com/errata/RHSA-2024:9571
reference_id	RHSA-2024:9571
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9571

fixed_packages

url	pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.54
purl	pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.54
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.54

url	pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.54.v20240208
purl	pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.54.v20240208
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.54.v20240208

url	pkg:maven/org.eclipse.jetty/jetty-servlets@10.0.18
purl	pkg:maven/org.eclipse.jetty/jetty-servlets@10.0.18
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-servlets@10.0.18

url	pkg:maven/org.eclipse.jetty/jetty-servlets@11.0.18
purl	pkg:maven/org.eclipse.jetty/jetty-servlets@11.0.18
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-servlets@11.0.18

aliases CVE-2024-9823, GHSA-j26w-f9rq-mr2q

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-khwg-3pxs-gqb2

url VCID-na2m-7z95-vbcd

vulnerability_id VCID-na2m-7z95-vbcd

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-26049.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-26049.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-26049

reference_id

reference_type

scores

value	0.00403
scoring_system	epss
scoring_elements	0.61448
published_at	2026-06-12T12:55:00Z

value	0.00403
scoring_system	epss
scoring_elements	0.61344
published_at	2026-06-11T12:55:00Z

value	0.00403
scoring_system	epss
scoring_elements	0.61451
published_at	2026-06-14T12:55:00Z

value	0.00403
scoring_system	epss
scoring_elements	0.61456
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-26049

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26048
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26048

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26049
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26049

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36479
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36479

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40167
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40167

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41900
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41900

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/eclipse/jetty.project

reference_id

reference_type

scores

value	2.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:N/A:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://github.com/eclipse/jetty.project

reference_url

https://github.com/eclipse/jetty.project/pull/9339

reference_id

reference_type

scores

value	2.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:N/A:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://github.com/eclipse/jetty.project/pull/9339

reference_url

https://github.com/eclipse/jetty.project/pull/9352

reference_id

reference_type

scores

value	2.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:N/A:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://github.com/eclipse/jetty.project/pull/9352

reference_url

https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.51.v20230217

reference_id

reference_type

scores

value	2.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:N/A:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.51.v20230217

reference_url

https://github.com/eclipse/jetty.project/security/advisories/GHSA-p26g-97m4-6q7c

reference_id

reference_type

scores

value	2.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:N/A:N

value	LOW
scoring_system	cvssv3.1_qr
scoring_elements

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://github.com/eclipse/jetty.project/security/advisories/GHSA-p26g-97m4-6q7c

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2023-26049

reference_id

reference_type

scores

value	2.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:N/A:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2023-26049

reference_url

https://security.netapp.com/advisory/ntap-20230526-0001

reference_id

reference_type

scores

value	2.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:N/A:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20230526-0001

reference_url

https://www.rfc-editor.org/rfc/rfc2965

reference_id

reference_type

scores

value	2.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:N/A:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://www.rfc-editor.org/rfc/rfc2965

reference_url

https://www.rfc-editor.org/rfc/rfc6265

reference_id

reference_type

scores

value	2.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:N/A:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://www.rfc-editor.org/rfc/rfc6265

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2236341
reference_id	2236341
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2236341

reference_url

https://github.com/advisories/GHSA-p26g-97m4-6q7c

reference_id

GHSA-p26g-97m4-6q7c

reference_type

scores

value	LOW
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-p26g-97m4-6q7c

reference_url	https://access.redhat.com/errata/RHSA-2023:5165
reference_id	RHSA-2023:5165
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5165

reference_url	https://access.redhat.com/errata/RHSA-2023:5441
reference_id	RHSA-2023:5441
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5441

reference_url	https://access.redhat.com/errata/RHSA-2023:7637
reference_id	RHSA-2023:7637
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7637

reference_url	https://access.redhat.com/errata/RHSA-2023:7638
reference_id	RHSA-2023:7638
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7638

reference_url	https://access.redhat.com/errata/RHSA-2023:7639
reference_id	RHSA-2023:7639
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7639

reference_url	https://access.redhat.com/errata/RHSA-2024:0778
reference_id	RHSA-2024:0778
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0778

reference_url	https://access.redhat.com/errata/RHSA-2024:0797
reference_id	RHSA-2024:0797
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0797

reference_url	https://access.redhat.com/errata/RHSA-2024:0798
reference_id	RHSA-2024:0798
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0798

reference_url	https://access.redhat.com/errata/RHSA-2024:0799
reference_id	RHSA-2024:0799
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0799

reference_url	https://access.redhat.com/errata/RHSA-2024:0800
reference_id	RHSA-2024:0800
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0800

reference_url	https://access.redhat.com/errata/RHSA-2024:0801
reference_id	RHSA-2024:0801
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0801

reference_url	https://access.redhat.com/errata/RHSA-2024:0804
reference_id	RHSA-2024:0804
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0804

reference_url	https://access.redhat.com/errata/RHSA-2024:3385
reference_id	RHSA-2024:3385
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3385

fixed_packages

url pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.51.v20230217

purl pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.51.v20230217

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-dbg4-v6wv-6kd3

vulnerability	VCID-jpta-ajvd-9ufz

vulnerability	VCID-khwg-3pxs-gqb2

vulnerability	VCID-yw6u-8w9z-xffh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.51.v20230217

url pkg:maven/org.eclipse.jetty/jetty-servlets@10.0.14

purl pkg:maven/org.eclipse.jetty/jetty-servlets@10.0.14

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7mms-qgns-uqhx

vulnerability	VCID-dbg4-v6wv-6kd3

vulnerability	VCID-jpta-ajvd-9ufz

vulnerability	VCID-khwg-3pxs-gqb2

vulnerability	VCID-yw6u-8w9z-xffh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-servlets@10.0.14

url pkg:maven/org.eclipse.jetty/jetty-servlets@11.0.14

purl pkg:maven/org.eclipse.jetty/jetty-servlets@11.0.14

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7mms-qgns-uqhx

vulnerability	VCID-dbg4-v6wv-6kd3

vulnerability	VCID-jpta-ajvd-9ufz

vulnerability	VCID-khwg-3pxs-gqb2

vulnerability	VCID-yw6u-8w9z-xffh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-servlets@11.0.14

aliases CVE-2023-26049, GHSA-p26g-97m4-6q7c

risk_score 2.4

exploitability 0.5

weighted_severity 4.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-na2m-7z95-vbcd

url VCID-yd97-jvbz-nug4

vulnerability_id VCID-yd97-jvbz-nug4

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-28169.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-28169.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-28169

reference_id

reference_type

scores

value	0.9026
scoring_system	epss
scoring_elements	0.99613
published_at	2026-06-12T12:55:00Z

value	0.9026
scoring_system	epss
scoring_elements	0.99614
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-28169

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10241
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10241

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10247
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10247

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27216
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27216

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27223
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27223

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28165
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28165

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28169
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28169

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-34428
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-34428

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/eclipse/jetty.project

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/eclipse/jetty.project

reference_url

https://github.com/eclipse/jetty.project/security/advisories/GHSA-gwcr-j4wh-j3cq

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/eclipse/jetty.project/security/advisories/GHSA-gwcr-j4wh-j3cq

reference_url

https://lists.apache.org/thread.html/r04a4b4553a23aff26f42635a6ae388c3b162aab30a88d12e59d05168@%3Cjira.kafka.apache.org%3E

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r04a4b4553a23aff26f42635a6ae388c3b162aab30a88d12e59d05168@%3Cjira.kafka.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r234f6452297065636356f43654cdacef565b8f9ceb0e0c07ffb8c73b@%3Cdev.kafka.apache.org%3E

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r234f6452297065636356f43654cdacef565b8f9ceb0e0c07ffb8c73b@%3Cdev.kafka.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r2721aba31a8562639c4b937150897e24f78f747cdbda8641c0f659fe@%3Cusers.kafka.apache.org%3E

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r2721aba31a8562639c4b937150897e24f78f747cdbda8641c0f659fe@%3Cusers.kafka.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r284de9c5399486dfff12ab9e7323ca720dd7019a9a3e11c8510a7140@%3Cjira.kafka.apache.org%3E

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r284de9c5399486dfff12ab9e7323ca720dd7019a9a3e11c8510a7140@%3Cjira.kafka.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r29678972c3f8164b151fd7a5802785d402e530c09870a82ffc7681a4@%3Cdev.kafka.apache.org%3E

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r29678972c3f8164b151fd7a5802785d402e530c09870a82ffc7681a4@%3Cdev.kafka.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r32b0b640ad2be3b858f0af51c68a7d5c5a66a462c8bbb93699825cd3@%3Cissues.zookeeper.apache.org%3E

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r32b0b640ad2be3b858f0af51c68a7d5c5a66a462c8bbb93699825cd3@%3Cissues.zookeeper.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r33eb06b05afbc7df28d31055cae0cb3fd36cab808c884bf6d680bea5@%3Cdev.zookeeper.apache.org%3E

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r33eb06b05afbc7df28d31055cae0cb3fd36cab808c884bf6d680bea5@%3Cdev.zookeeper.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r67c4f90658fde875521c949448c54c98517beecdc7f618f902c620ec@%3Cissues.zookeeper.apache.org%3E

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r67c4f90658fde875521c949448c54c98517beecdc7f618f902c620ec@%3Cissues.zookeeper.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r8a1a332899a1f92c8118b0895b144b27a78e3f25b9d58a34dd5eb084@%3Cnotifications.zookeeper.apache.org%3E

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r8a1a332899a1f92c8118b0895b144b27a78e3f25b9d58a34dd5eb084@%3Cnotifications.zookeeper.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r91e34ff61aff8fd25a3f2a21539597c6ef7589a31c199b0a9546477c@%3Cjira.kafka.apache.org%3E

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r91e34ff61aff8fd25a3f2a21539597c6ef7589a31c199b0a9546477c@%3Cjira.kafka.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rb1292d30462b9baedea7c5d9594fc75990d9aa0ec223b48054ca9c25@%3Cjira.kafka.apache.org%3E

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rb1292d30462b9baedea7c5d9594fc75990d9aa0ec223b48054ca9c25@%3Cjira.kafka.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rbefa055282d52d6b58d29a79fbb0be65ab0a38d25f00bd29eaf5e6fd@%3Cnotifications.zookeeper.apache.org%3E

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rbefa055282d52d6b58d29a79fbb0be65ab0a38d25f00bd29eaf5e6fd@%3Cnotifications.zookeeper.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rd5b52362f5edf98e0dcab6541a381f571cccc05ad9188e793af688f3@%3Cjira.kafka.apache.org%3E

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rd5b52362f5edf98e0dcab6541a381f571cccc05ad9188e793af688f3@%3Cjira.kafka.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rddbb4f8d5db23265bb63d14ef4b3723b438abc1589f877db11d35450@%3Cissues.zookeeper.apache.org%3E

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rddbb4f8d5db23265bb63d14ef4b3723b438abc1589f877db11d35450@%3Cissues.zookeeper.apache.org%3E

reference_url

https://lists.apache.org/thread.html/ref1c161a1621504e673f9197b49e6efe5a33ce3f0e6d8f1f804fc695@%3Cjira.kafka.apache.org%3E

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/ref1c161a1621504e673f9197b49e6efe5a33ce3f0e6d8f1f804fc695@%3Cjira.kafka.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rf36f1114e84a3379b20587063686148e2d5a39abc0b8a66ff2a9087a@%3Cissues.zookeeper.apache.org%3E

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rf36f1114e84a3379b20587063686148e2d5a39abc0b8a66ff2a9087a@%3Cissues.zookeeper.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rfff6ff8ffb31e8a32619c79774def44b6ffbb037c128c5ad3eab7171@%3Cissues.zookeeper.apache.org%3E

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rfff6ff8ffb31e8a32619c79774def44b6ffbb037c128c5ad3eab7171@%3Cissues.zookeeper.apache.org%3E

reference_url

https://lists.debian.org/debian-lts-announce/2021/06/msg00017.html

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.debian.org/debian-lts-announce/2021/06/msg00017.html

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2021-28169

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2021-28169

reference_url

https://security.netapp.com/advisory/ntap-20210727-0009

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20210727-0009

reference_url	https://security.netapp.com/advisory/ntap-20210727-0009/
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20210727-0009/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1971016
reference_id	1971016
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1971016

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989999
reference_id	989999
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989999

reference_url

https://github.com/advisories/GHSA-gwcr-j4wh-j3cq

reference_id

GHSA-gwcr-j4wh-j3cq

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-gwcr-j4wh-j3cq

reference_url	https://access.redhat.com/errata/RHSA-2021:3225
reference_id	RHSA-2021:3225
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:3225

reference_url	https://access.redhat.com/errata/RHSA-2021:3700
reference_id	RHSA-2021:3700
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:3700

reference_url	https://access.redhat.com/errata/RHSA-2021:3758
reference_id	RHSA-2021:3758
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:3758

reference_url	https://access.redhat.com/errata/RHSA-2021:4767
reference_id	RHSA-2021:4767
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:4767

reference_url	https://access.redhat.com/errata/RHSA-2021:5134
reference_id	RHSA-2021:5134
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:5134

reference_url	https://access.redhat.com/errata/RHSA-2022:7257
reference_id	RHSA-2022:7257
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:7257

fixed_packages

url	pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.41
purl	pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.41
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.41

url pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.41.v20210516

purl pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.41.v20210516

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-dbg4-v6wv-6kd3

vulnerability	VCID-jpta-ajvd-9ufz

vulnerability	VCID-khwg-3pxs-gqb2

vulnerability	VCID-na2m-7z95-vbcd

vulnerability	VCID-yw6u-8w9z-xffh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.41.v20210516

url pkg:maven/org.eclipse.jetty/jetty-servlets@10.0.3

purl pkg:maven/org.eclipse.jetty/jetty-servlets@10.0.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7mms-qgns-uqhx

vulnerability	VCID-dbg4-v6wv-6kd3

vulnerability	VCID-jpta-ajvd-9ufz

vulnerability	VCID-khwg-3pxs-gqb2

vulnerability	VCID-na2m-7z95-vbcd

vulnerability	VCID-yw6u-8w9z-xffh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-servlets@10.0.3

url pkg:maven/org.eclipse.jetty/jetty-servlets@11.0.3

purl pkg:maven/org.eclipse.jetty/jetty-servlets@11.0.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7mms-qgns-uqhx

vulnerability	VCID-dbg4-v6wv-6kd3

vulnerability	VCID-jpta-ajvd-9ufz

vulnerability	VCID-khwg-3pxs-gqb2

vulnerability	VCID-na2m-7z95-vbcd

vulnerability	VCID-yw6u-8w9z-xffh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-servlets@11.0.3

aliases CVE-2021-28169, GHSA-gwcr-j4wh-j3cq

risk_score 10.0

exploitability 2.0

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yd97-jvbz-nug4

url VCID-yw6u-8w9z-xffh

vulnerability_id VCID-yw6u-8w9z-xffh

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-36479.json

reference_id

reference_type

scores

value	3.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-36479.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-36479

reference_id

reference_type

scores

value	0.01383
scoring_system	epss
scoring_elements	0.80719
published_at	2026-06-11T12:55:00Z

value	0.01383
scoring_system	epss
scoring_elements	0.80781
published_at	2026-06-14T12:55:00Z

value	0.01383
scoring_system	epss
scoring_elements	0.8079
published_at	2026-06-13T12:55:00Z

value	0.01383
scoring_system	epss
scoring_elements	0.80779
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-36479

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26048
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26048

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26049
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26049

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36479
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36479

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40167
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40167

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41900
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41900

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/eclipse/jetty.project

reference_id

reference_type

scores

value	3.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://github.com/eclipse/jetty.project

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2023-36479

reference_id

reference_type

scores

value	3.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2023-36479

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2239630
reference_id	2239630
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2239630

reference_url

https://github.com/eclipse/jetty.project/pull/9516

reference_id

9516

reference_type

scores

value	3.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N

value	LOW
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T15:04:27Z/

url

https://github.com/eclipse/jetty.project/pull/9516

reference_url

https://github.com/eclipse/jetty.project/pull/9888

reference_id

9888

reference_type

scores

value	3.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N

value	LOW
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T15:04:27Z/

url

https://github.com/eclipse/jetty.project/pull/9888

reference_url

https://github.com/eclipse/jetty.project/pull/9889

reference_id

9889

reference_type

scores

value	3.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N

value	LOW
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T15:04:27Z/

url

https://github.com/eclipse/jetty.project/pull/9889

reference_url

https://www.debian.org/security/2023/dsa-5507

reference_id

dsa-5507

reference_type

scores

value	3.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N

value	LOW
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T15:04:27Z/

url

https://www.debian.org/security/2023/dsa-5507

reference_url

https://github.com/advisories/GHSA-3gh6-v5v9-6v9j

reference_id

GHSA-3gh6-v5v9-6v9j

reference_type

scores

value	LOW
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-3gh6-v5v9-6v9j

reference_url

https://github.com/eclipse/jetty.project/security/advisories/GHSA-3gh6-v5v9-6v9j

reference_id

GHSA-3gh6-v5v9-6v9j

reference_type

scores

value	3.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N

value	LOW
scoring_system	cvssv3.1_qr
scoring_elements

value	LOW
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T15:04:27Z/

url

https://github.com/eclipse/jetty.project/security/advisories/GHSA-3gh6-v5v9-6v9j

reference_url

https://lists.debian.org/debian-lts-announce/2023/09/msg00039.html

reference_id

msg00039.html

reference_type

scores

value	3.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N

value	LOW
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T15:04:27Z/

url

https://lists.debian.org/debian-lts-announce/2023/09/msg00039.html

reference_url	https://access.redhat.com/errata/RHSA-2023:7247
reference_id	RHSA-2023:7247
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7247

reference_url	https://access.redhat.com/errata/RHSA-2024:0797
reference_id	RHSA-2024:0797
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0797

reference_url	https://access.redhat.com/errata/RHSA-2024:2010
reference_id	RHSA-2024:2010
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2010

reference_url	https://access.redhat.com/errata/RHSA-2024:3354
reference_id	RHSA-2024:3354
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3354

reference_url	https://access.redhat.com/errata/RHSA-2024:3919
reference_id	RHSA-2024:3919
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3919

reference_url	https://access.redhat.com/errata/RHSA-2024:3989
reference_id	RHSA-2024:3989
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3989

fixed_packages

url	pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.52
purl	pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.52
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.52

url pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.52.v20230823

purl pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.52.v20230823

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-khwg-3pxs-gqb2

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.52.v20230823

url pkg:maven/org.eclipse.jetty/jetty-servlets@10.0.16

purl pkg:maven/org.eclipse.jetty/jetty-servlets@10.0.16

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7mms-qgns-uqhx

vulnerability	VCID-khwg-3pxs-gqb2

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-servlets@10.0.16

url pkg:maven/org.eclipse.jetty/jetty-servlets@11.0.16

purl pkg:maven/org.eclipse.jetty/jetty-servlets@11.0.16

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7mms-qgns-uqhx

vulnerability	VCID-khwg-3pxs-gqb2

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-servlets@11.0.16

aliases CVE-2023-36479, GHSA-3gh6-v5v9-6v9j

risk_score 1.6

exploitability 0.5

weighted_severity 3.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yw6u-8w9z-xffh

Fixing_vulnerabilities

Risk_score 10.0

Resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-servlets@9.4.33.v20201020

Package Instance