Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-3f6t-fkt7-wub9
Summary
Information Exposure
For Eclipse Jetty, URIs can be crafted using some encoded characters to access the content of the WEB-INF directory and/or bypass some security constraints. This is a variation of the vulnerability reported in CVE-2021-28164.
Aliases
0
alias CVE-2021-34429
1
alias GHSA-vjv5-gp2w-65vm
Fixed_packages
0
url pkg:deb/debian/jetty9@9.4.39-3?distro=trixie
purl pkg:deb/debian/jetty9@9.4.39-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jetty9@9.4.39-3%3Fdistro=trixie
1
url pkg:deb/debian/jetty9@9.4.50-4%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/jetty9@9.4.50-4%2Bdeb11u2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jetty9@9.4.50-4%252Bdeb11u2%3Fdistro=trixie
2
url pkg:deb/debian/jetty9@9.4.50-4%2Bdeb11u2
purl pkg:deb/debian/jetty9@9.4.50-4%2Bdeb11u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1ejr-3tea-kydr
1
vulnerability VCID-gdcf-9axf-1yaq
2
vulnerability VCID-gq93-ctd4-aqbp
3
vulnerability VCID-kx4x-gnk4-yugu
4
vulnerability VCID-memq-11qz-9qem
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jetty9@9.4.50-4%252Bdeb11u2
3
url pkg:deb/debian/jetty9@9.4.57-1.1~deb12u1?distro=trixie
purl pkg:deb/debian/jetty9@9.4.57-1.1~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jetty9@9.4.57-1.1~deb12u1%3Fdistro=trixie
4
url pkg:deb/debian/jetty9@9.4.57-1.1~deb13u1?distro=trixie
purl pkg:deb/debian/jetty9@9.4.57-1.1~deb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jetty9@9.4.57-1.1~deb13u1%3Fdistro=trixie
5
url pkg:deb/debian/jetty9@9.4.58-1?distro=trixie
purl pkg:deb/debian/jetty9@9.4.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jetty9@9.4.58-1%3Fdistro=trixie
6
url pkg:deb/debian/jetty9@9.4.58-2?distro=trixie
purl pkg:deb/debian/jetty9@9.4.58-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jetty9@9.4.58-2%3Fdistro=trixie
7
url pkg:maven/org.eclipse.jetty/jetty-webapp@9.4.43.v20210629
purl pkg:maven/org.eclipse.jetty/jetty-webapp@9.4.43.v20210629
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-9xw3-4a4u-hbbb
1
vulnerability VCID-q3k2-1x5q-buhy
2
vulnerability VCID-rpc4-u4aq-4qde
3
vulnerability VCID-thpu-76e5-j3d3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-webapp@9.4.43.v20210629
8
url pkg:maven/org.eclipse.jetty/jetty-webapp@10.0.6
purl pkg:maven/org.eclipse.jetty/jetty-webapp@10.0.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-9xw3-4a4u-hbbb
1
vulnerability VCID-q3k2-1x5q-buhy
2
vulnerability VCID-rpc4-u4aq-4qde
3
vulnerability VCID-thpu-76e5-j3d3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-webapp@10.0.6
9
url pkg:maven/org.eclipse.jetty/jetty-webapp@11.0.6
purl pkg:maven/org.eclipse.jetty/jetty-webapp@11.0.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-9xw3-4a4u-hbbb
1
vulnerability VCID-q3k2-1x5q-buhy
2
vulnerability VCID-rpc4-u4aq-4qde
3
vulnerability VCID-thpu-76e5-j3d3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-webapp@11.0.6
Affected_packages
0
url pkg:deb/debian/jetty9@9.2.21-1~bpo8%2B1
purl pkg:deb/debian/jetty9@9.2.21-1~bpo8%2B1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12gq-ezut-ckhz
1
vulnerability VCID-1ejr-3tea-kydr
2
vulnerability VCID-3f6t-fkt7-wub9
3
vulnerability VCID-5781-s1ny-q7ey
4
vulnerability VCID-5qhm-ase5-5qhy
5
vulnerability VCID-9xw3-4a4u-hbbb
6
vulnerability VCID-ahev-zdjd-gqg1
7
vulnerability VCID-czhb-gqt2-17av
8
vulnerability VCID-dvyn-8phs-a3a6
9
vulnerability VCID-dznb-x27e-kqan
10
vulnerability VCID-g3ff-brt6-vkeh
11
vulnerability VCID-gdcf-9axf-1yaq
12
vulnerability VCID-gq93-ctd4-aqbp
13
vulnerability VCID-kvqz-fppe-d7fe
14
vulnerability VCID-kx4x-gnk4-yugu
15
vulnerability VCID-kxtv-ma18-8fer
16
vulnerability VCID-memq-11qz-9qem
17
vulnerability VCID-nubz-xqaw-tkfr
18
vulnerability VCID-nyxu-ekhs-gyb5
19
vulnerability VCID-p7cu-h519-83hx
20
vulnerability VCID-prd3-mmuv-n3dc
21
vulnerability VCID-q35p-8qhp-aqec
22
vulnerability VCID-q3k2-1x5q-buhy
23
vulnerability VCID-rpc4-u4aq-4qde
24
vulnerability VCID-sw3q-jzqx-dkbn
25
vulnerability VCID-thpu-76e5-j3d3
26
vulnerability VCID-tqm9-4ch7-s7b3
27
vulnerability VCID-u2b5-uyd6-fbh9
28
vulnerability VCID-uuju-ey95-tyfq
29
vulnerability VCID-y3mv-vmwd-tydt
30
vulnerability VCID-ypc7-f1nd-t7gn
31
vulnerability VCID-zdt8-jrn2-m3ff
32
vulnerability VCID-znv6-77jf-v3gu
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jetty9@9.2.21-1~bpo8%252B1
1
url pkg:deb/debian/jetty9@9.2.21-1%2Bdeb9u1
purl pkg:deb/debian/jetty9@9.2.21-1%2Bdeb9u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12gq-ezut-ckhz
1
vulnerability VCID-1ejr-3tea-kydr
2
vulnerability VCID-3f6t-fkt7-wub9
3
vulnerability VCID-5781-s1ny-q7ey
4
vulnerability VCID-5qhm-ase5-5qhy
5
vulnerability VCID-9xw3-4a4u-hbbb
6
vulnerability VCID-ahev-zdjd-gqg1
7
vulnerability VCID-czhb-gqt2-17av
8
vulnerability VCID-dvyn-8phs-a3a6
9
vulnerability VCID-dznb-x27e-kqan
10
vulnerability VCID-g3ff-brt6-vkeh
11
vulnerability VCID-gdcf-9axf-1yaq
12
vulnerability VCID-gq93-ctd4-aqbp
13
vulnerability VCID-kvqz-fppe-d7fe
14
vulnerability VCID-kx4x-gnk4-yugu
15
vulnerability VCID-kxtv-ma18-8fer
16
vulnerability VCID-memq-11qz-9qem
17
vulnerability VCID-nubz-xqaw-tkfr
18
vulnerability VCID-nyxu-ekhs-gyb5
19
vulnerability VCID-p7cu-h519-83hx
20
vulnerability VCID-prd3-mmuv-n3dc
21
vulnerability VCID-q35p-8qhp-aqec
22
vulnerability VCID-q3k2-1x5q-buhy
23
vulnerability VCID-rpc4-u4aq-4qde
24
vulnerability VCID-sw3q-jzqx-dkbn
25
vulnerability VCID-thpu-76e5-j3d3
26
vulnerability VCID-tqm9-4ch7-s7b3
27
vulnerability VCID-u2b5-uyd6-fbh9
28
vulnerability VCID-uuju-ey95-tyfq
29
vulnerability VCID-y3mv-vmwd-tydt
30
vulnerability VCID-ypc7-f1nd-t7gn
31
vulnerability VCID-zdt8-jrn2-m3ff
32
vulnerability VCID-znv6-77jf-v3gu
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jetty9@9.2.21-1%252Bdeb9u1
2
url pkg:deb/debian/jetty9@9.2.23-1~bpo8%2B1
purl pkg:deb/debian/jetty9@9.2.23-1~bpo8%2B1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12gq-ezut-ckhz
1
vulnerability VCID-1ejr-3tea-kydr
2
vulnerability VCID-3f6t-fkt7-wub9
3
vulnerability VCID-5781-s1ny-q7ey
4
vulnerability VCID-5qhm-ase5-5qhy
5
vulnerability VCID-9xw3-4a4u-hbbb
6
vulnerability VCID-ahev-zdjd-gqg1
7
vulnerability VCID-czhb-gqt2-17av
8
vulnerability VCID-dvyn-8phs-a3a6
9
vulnerability VCID-g3ff-brt6-vkeh
10
vulnerability VCID-gdcf-9axf-1yaq
11
vulnerability VCID-gq93-ctd4-aqbp
12
vulnerability VCID-kvqz-fppe-d7fe
13
vulnerability VCID-kx4x-gnk4-yugu
14
vulnerability VCID-kxtv-ma18-8fer
15
vulnerability VCID-memq-11qz-9qem
16
vulnerability VCID-nubz-xqaw-tkfr
17
vulnerability VCID-nyxu-ekhs-gyb5
18
vulnerability VCID-p7cu-h519-83hx
19
vulnerability VCID-prd3-mmuv-n3dc
20
vulnerability VCID-q35p-8qhp-aqec
21
vulnerability VCID-q3k2-1x5q-buhy
22
vulnerability VCID-rpc4-u4aq-4qde
23
vulnerability VCID-sw3q-jzqx-dkbn
24
vulnerability VCID-thpu-76e5-j3d3
25
vulnerability VCID-tqm9-4ch7-s7b3
26
vulnerability VCID-u2b5-uyd6-fbh9
27
vulnerability VCID-uuju-ey95-tyfq
28
vulnerability VCID-y3mv-vmwd-tydt
29
vulnerability VCID-ypc7-f1nd-t7gn
30
vulnerability VCID-zdt8-jrn2-m3ff
31
vulnerability VCID-znv6-77jf-v3gu
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jetty9@9.2.23-1~bpo8%252B1
3
url pkg:deb/debian/jetty9@9.4.16-0%2Bdeb10u1
purl pkg:deb/debian/jetty9@9.4.16-0%2Bdeb10u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1ejr-3tea-kydr
1
vulnerability VCID-3f6t-fkt7-wub9
2
vulnerability VCID-5781-s1ny-q7ey
3
vulnerability VCID-5qhm-ase5-5qhy
4
vulnerability VCID-9xw3-4a4u-hbbb
5
vulnerability VCID-ahev-zdjd-gqg1
6
vulnerability VCID-czhb-gqt2-17av
7
vulnerability VCID-dvyn-8phs-a3a6
8
vulnerability VCID-g3ff-brt6-vkeh
9
vulnerability VCID-gdcf-9axf-1yaq
10
vulnerability VCID-gq93-ctd4-aqbp
11
vulnerability VCID-kx4x-gnk4-yugu
12
vulnerability VCID-kxtv-ma18-8fer
13
vulnerability VCID-memq-11qz-9qem
14
vulnerability VCID-nubz-xqaw-tkfr
15
vulnerability VCID-nyxu-ekhs-gyb5
16
vulnerability VCID-p7cu-h519-83hx
17
vulnerability VCID-prd3-mmuv-n3dc
18
vulnerability VCID-q35p-8qhp-aqec
19
vulnerability VCID-q3k2-1x5q-buhy
20
vulnerability VCID-rpc4-u4aq-4qde
21
vulnerability VCID-sw3q-jzqx-dkbn
22
vulnerability VCID-thpu-76e5-j3d3
23
vulnerability VCID-tqm9-4ch7-s7b3
24
vulnerability VCID-uuju-ey95-tyfq
25
vulnerability VCID-y3mv-vmwd-tydt
26
vulnerability VCID-ypc7-f1nd-t7gn
27
vulnerability VCID-zdt8-jrn2-m3ff
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jetty9@9.4.16-0%252Bdeb10u1
4
url pkg:maven/org.eclipse.jetty/jetty-webapp@9.4.37
purl pkg:maven/org.eclipse.jetty/jetty-webapp@9.4.37
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3f6t-fkt7-wub9
1
vulnerability VCID-p7cu-h519-83hx
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-webapp@9.4.37
5
url pkg:maven/org.eclipse.jetty/jetty-webapp@9.4.37.v20210219
purl pkg:maven/org.eclipse.jetty/jetty-webapp@9.4.37.v20210219
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3f6t-fkt7-wub9
1
vulnerability VCID-9xw3-4a4u-hbbb
2
vulnerability VCID-kxtv-ma18-8fer
3
vulnerability VCID-p7cu-h519-83hx
4
vulnerability VCID-q3k2-1x5q-buhy
5
vulnerability VCID-rpc4-u4aq-4qde
6
vulnerability VCID-thpu-76e5-j3d3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-webapp@9.4.37.v20210219
6
url pkg:maven/org.eclipse.jetty/jetty-webapp@9.4.38.v20210224
purl pkg:maven/org.eclipse.jetty/jetty-webapp@9.4.38.v20210224
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3f6t-fkt7-wub9
1
vulnerability VCID-9xw3-4a4u-hbbb
2
vulnerability VCID-kxtv-ma18-8fer
3
vulnerability VCID-q3k2-1x5q-buhy
4
vulnerability VCID-rpc4-u4aq-4qde
5
vulnerability VCID-thpu-76e5-j3d3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-webapp@9.4.38.v20210224
7
url pkg:maven/org.eclipse.jetty/jetty-webapp@9.4.39.v20210325
purl pkg:maven/org.eclipse.jetty/jetty-webapp@9.4.39.v20210325
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3f6t-fkt7-wub9
1
vulnerability VCID-9xw3-4a4u-hbbb
2
vulnerability VCID-q3k2-1x5q-buhy
3
vulnerability VCID-rpc4-u4aq-4qde
4
vulnerability VCID-thpu-76e5-j3d3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-webapp@9.4.39.v20210325
8
url pkg:maven/org.eclipse.jetty/jetty-webapp@9.4.40.v20210413
purl pkg:maven/org.eclipse.jetty/jetty-webapp@9.4.40.v20210413
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3f6t-fkt7-wub9
1
vulnerability VCID-9xw3-4a4u-hbbb
2
vulnerability VCID-q3k2-1x5q-buhy
3
vulnerability VCID-rpc4-u4aq-4qde
4
vulnerability VCID-thpu-76e5-j3d3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-webapp@9.4.40.v20210413
9
url pkg:maven/org.eclipse.jetty/jetty-webapp@9.4.41.v20210516
purl pkg:maven/org.eclipse.jetty/jetty-webapp@9.4.41.v20210516
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3f6t-fkt7-wub9
1
vulnerability VCID-9xw3-4a4u-hbbb
2
vulnerability VCID-q3k2-1x5q-buhy
3
vulnerability VCID-rpc4-u4aq-4qde
4
vulnerability VCID-thpu-76e5-j3d3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-webapp@9.4.41.v20210516
10
url pkg:maven/org.eclipse.jetty/jetty-webapp@9.4.42.v20210604
purl pkg:maven/org.eclipse.jetty/jetty-webapp@9.4.42.v20210604
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3f6t-fkt7-wub9
1
vulnerability VCID-9xw3-4a4u-hbbb
2
vulnerability VCID-q3k2-1x5q-buhy
3
vulnerability VCID-rpc4-u4aq-4qde
4
vulnerability VCID-thpu-76e5-j3d3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-webapp@9.4.42.v20210604
11
url pkg:maven/org.eclipse.jetty/jetty-webapp@10.0.1
purl pkg:maven/org.eclipse.jetty/jetty-webapp@10.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3f6t-fkt7-wub9
1
vulnerability VCID-9xw3-4a4u-hbbb
2
vulnerability VCID-kxtv-ma18-8fer
3
vulnerability VCID-q3k2-1x5q-buhy
4
vulnerability VCID-rpc4-u4aq-4qde
5
vulnerability VCID-thpu-76e5-j3d3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-webapp@10.0.1
12
url pkg:maven/org.eclipse.jetty/jetty-webapp@10.0.2
purl pkg:maven/org.eclipse.jetty/jetty-webapp@10.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3f6t-fkt7-wub9
1
vulnerability VCID-9xw3-4a4u-hbbb
2
vulnerability VCID-q3k2-1x5q-buhy
3
vulnerability VCID-rpc4-u4aq-4qde
4
vulnerability VCID-thpu-76e5-j3d3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-webapp@10.0.2
13
url pkg:maven/org.eclipse.jetty/jetty-webapp@10.0.3
purl pkg:maven/org.eclipse.jetty/jetty-webapp@10.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3f6t-fkt7-wub9
1
vulnerability VCID-9xw3-4a4u-hbbb
2
vulnerability VCID-q3k2-1x5q-buhy
3
vulnerability VCID-rpc4-u4aq-4qde
4
vulnerability VCID-thpu-76e5-j3d3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-webapp@10.0.3
14
url pkg:maven/org.eclipse.jetty/jetty-webapp@10.0.4
purl pkg:maven/org.eclipse.jetty/jetty-webapp@10.0.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3f6t-fkt7-wub9
1
vulnerability VCID-9xw3-4a4u-hbbb
2
vulnerability VCID-q3k2-1x5q-buhy
3
vulnerability VCID-rpc4-u4aq-4qde
4
vulnerability VCID-thpu-76e5-j3d3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-webapp@10.0.4
15
url pkg:maven/org.eclipse.jetty/jetty-webapp@10.0.5
purl pkg:maven/org.eclipse.jetty/jetty-webapp@10.0.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3f6t-fkt7-wub9
1
vulnerability VCID-9xw3-4a4u-hbbb
2
vulnerability VCID-q3k2-1x5q-buhy
3
vulnerability VCID-rpc4-u4aq-4qde
4
vulnerability VCID-thpu-76e5-j3d3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-webapp@10.0.5
16
url pkg:maven/org.eclipse.jetty/jetty-webapp@11.0.1
purl pkg:maven/org.eclipse.jetty/jetty-webapp@11.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3f6t-fkt7-wub9
1
vulnerability VCID-9xw3-4a4u-hbbb
2
vulnerability VCID-kxtv-ma18-8fer
3
vulnerability VCID-q3k2-1x5q-buhy
4
vulnerability VCID-rpc4-u4aq-4qde
5
vulnerability VCID-thpu-76e5-j3d3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-webapp@11.0.1
17
url pkg:maven/org.eclipse.jetty/jetty-webapp@11.0.2
purl pkg:maven/org.eclipse.jetty/jetty-webapp@11.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3f6t-fkt7-wub9
1
vulnerability VCID-9xw3-4a4u-hbbb
2
vulnerability VCID-q3k2-1x5q-buhy
3
vulnerability VCID-rpc4-u4aq-4qde
4
vulnerability VCID-thpu-76e5-j3d3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-webapp@11.0.2
18
url pkg:maven/org.eclipse.jetty/jetty-webapp@11.0.3
purl pkg:maven/org.eclipse.jetty/jetty-webapp@11.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3f6t-fkt7-wub9
1
vulnerability VCID-9xw3-4a4u-hbbb
2
vulnerability VCID-q3k2-1x5q-buhy
3
vulnerability VCID-rpc4-u4aq-4qde
4
vulnerability VCID-thpu-76e5-j3d3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-webapp@11.0.3
19
url pkg:maven/org.eclipse.jetty/jetty-webapp@11.0.4
purl pkg:maven/org.eclipse.jetty/jetty-webapp@11.0.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3f6t-fkt7-wub9
1
vulnerability VCID-9xw3-4a4u-hbbb
2
vulnerability VCID-q3k2-1x5q-buhy
3
vulnerability VCID-rpc4-u4aq-4qde
4
vulnerability VCID-thpu-76e5-j3d3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-webapp@11.0.4
20
url pkg:maven/org.eclipse.jetty/jetty-webapp@11.0.5
purl pkg:maven/org.eclipse.jetty/jetty-webapp@11.0.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3f6t-fkt7-wub9
1
vulnerability VCID-9xw3-4a4u-hbbb
2
vulnerability VCID-q3k2-1x5q-buhy
3
vulnerability VCID-rpc4-u4aq-4qde
4
vulnerability VCID-thpu-76e5-j3d3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.eclipse.jetty/jetty-webapp@11.0.5
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-34429.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-34429.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-34429
reference_id
reference_type
scores
0
value 0.93778
scoring_system epss
scoring_elements 0.99859
published_at 2026-05-14T12:55:00Z
1
value 0.93778
scoring_system epss
scoring_elements 0.99858
published_at 2026-04-24T12:55:00Z
2
value 0.93778
scoring_system epss
scoring_elements 0.99857
published_at 2026-04-21T12:55:00Z
3
value 0.93778
scoring_system epss
scoring_elements 0.99856
published_at 2026-04-12T12:55:00Z
4
value 0.93778
scoring_system epss
scoring_elements 0.99855
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-34429
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-34429
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-34429
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/eclipse/jetty.project
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/eclipse/jetty.project
5
reference_url https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.43.v20210629
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.43.v20210629
6
reference_url https://github.com/eclipse/jetty.project/security/advisories/GHSA-vjv5-gp2w-65vm
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/eclipse/jetty.project/security/advisories/GHSA-vjv5-gp2w-65vm
7
reference_url https://lists.apache.org/thread.html/r029c0c6833c8bb6acb094733fd7b75029d633f47a92f1c9d14391fc0@%3Cnotifications.zookeeper.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r029c0c6833c8bb6acb094733fd7b75029d633f47a92f1c9d14391fc0@%3Cnotifications.zookeeper.apache.org%3E
8
reference_url https://lists.apache.org/thread.html/r02f940c27e997a277ff14e79e84551382e1081e8978b417e0c2b0857@%3Ccommits.kafka.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r02f940c27e997a277ff14e79e84551382e1081e8978b417e0c2b0857@%3Ccommits.kafka.apache.org%3E
9
reference_url https://lists.apache.org/thread.html/r0626f279ebf65506110a897e3a57ccd4072803ee5434b2503e070398@%3Ccommits.zookeeper.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r0626f279ebf65506110a897e3a57ccd4072803ee5434b2503e070398@%3Ccommits.zookeeper.apache.org%3E
10
reference_url https://lists.apache.org/thread.html/r2a3ea27cca2ac7352d392b023b72e824387bc9ff16ba245ec663bdc6@%3Cissues.zookeeper.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r2a3ea27cca2ac7352d392b023b72e824387bc9ff16ba245ec663bdc6@%3Cissues.zookeeper.apache.org%3E
11
reference_url https://lists.apache.org/thread.html/r2e32390cb7aedb39069e5b18aa130ca53e766258518faee63c31d3ea@%3Cnotifications.zookeeper.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r2e32390cb7aedb39069e5b18aa130ca53e766258518faee63c31d3ea@%3Cnotifications.zookeeper.apache.org%3E
12
reference_url https://lists.apache.org/thread.html/r3aefe613abce594c71ace50088d2529bbde65d08b8e7ff2c2723aaa1@%3Cdev.santuario.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r3aefe613abce594c71ace50088d2529bbde65d08b8e7ff2c2723aaa1@%3Cdev.santuario.apache.org%3E
13
reference_url https://lists.apache.org/thread.html/r3c55b0baa4dc38958ae147b2f216e212605f1071297f845e14477d36@%3Cissues.zookeeper.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r3c55b0baa4dc38958ae147b2f216e212605f1071297f845e14477d36@%3Cissues.zookeeper.apache.org%3E
14
reference_url https://lists.apache.org/thread.html/r44ea39ca8110de7353bfec88f58aa3aa58a42bb324b8772512ee190c@%3Ccommits.zookeeper.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r44ea39ca8110de7353bfec88f58aa3aa58a42bb324b8772512ee190c@%3Ccommits.zookeeper.apache.org%3E
15
reference_url https://lists.apache.org/thread.html/r46900f74dbb7d168aeac43bf0e7f64825376bb7eb74d31a5b33344ce@%3Cjira.kafka.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r46900f74dbb7d168aeac43bf0e7f64825376bb7eb74d31a5b33344ce@%3Cjira.kafka.apache.org%3E
16
reference_url https://lists.apache.org/thread.html/r46f748c1dc9cf9b6c1c18f6b5bfc3a869907f68f72e17666f2f30f24@%3Cnotifications.zookeeper.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r46f748c1dc9cf9b6c1c18f6b5bfc3a869907f68f72e17666f2f30f24@%3Cnotifications.zookeeper.apache.org%3E
17
reference_url https://lists.apache.org/thread.html/r4727d282b5c2d951057845a46065d59f6e33132edc0a14f41c26b01e@%3Cdev.kafka.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r4727d282b5c2d951057845a46065d59f6e33132edc0a14f41c26b01e@%3Cdev.kafka.apache.org%3E
18
reference_url https://lists.apache.org/thread.html/r48a93f2bc025acd7c7e341ed3864bfdeb75f0c768d41bc247e1a1f63@%3Cnotifications.zookeeper.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r48a93f2bc025acd7c7e341ed3864bfdeb75f0c768d41bc247e1a1f63@%3Cnotifications.zookeeper.apache.org%3E
19
reference_url https://lists.apache.org/thread.html/r5678d994d4dd8e7c838eed3bbc1a83a7f6bc62724b0cce67e8892a45@%3Cnotifications.zookeeper.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r5678d994d4dd8e7c838eed3bbc1a83a7f6bc62724b0cce67e8892a45@%3Cnotifications.zookeeper.apache.org%3E
20
reference_url https://lists.apache.org/thread.html/r679d96f981d4c92724090ed2d5e8565a1d655a72bb315550489f052e@%3Cjira.kafka.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r679d96f981d4c92724090ed2d5e8565a1d655a72bb315550489f052e@%3Cjira.kafka.apache.org%3E
21
reference_url https://lists.apache.org/thread.html/r6e6f50c1ce1fb592cb43e913f5be23df104d50751465f8f1952ace0c@%3Cjira.kafka.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r6e6f50c1ce1fb592cb43e913f5be23df104d50751465f8f1952ace0c@%3Cjira.kafka.apache.org%3E
22
reference_url https://lists.apache.org/thread.html/r721ab6a5fa8d45bec76714b674f5d4caed2ebfeca69ad1d6d4caae6c@%3Cdev.hbase.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r721ab6a5fa8d45bec76714b674f5d4caed2ebfeca69ad1d6d4caae6c@%3Cdev.hbase.apache.org%3E
23
reference_url https://lists.apache.org/thread.html/r74fdc446df551fe89a0a16957a1bfdaad19380e0c1afd30625685a9c@%3Cjira.kafka.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r74fdc446df551fe89a0a16957a1bfdaad19380e0c1afd30625685a9c@%3Cjira.kafka.apache.org%3E
24
reference_url https://lists.apache.org/thread.html/r756443e9d50af7e8c3df82e2c45105f452c8e8195ddbc0c00f58d5fe@%3Ccommits.kafka.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r756443e9d50af7e8c3df82e2c45105f452c8e8195ddbc0c00f58d5fe@%3Ccommits.kafka.apache.org%3E
25
reference_url https://lists.apache.org/thread.html/r763840320a80e515331cbc1e613fa93f25faf62e991974171a325c82@%3Cdev.zookeeper.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r763840320a80e515331cbc1e613fa93f25faf62e991974171a325c82@%3Cdev.zookeeper.apache.org%3E
26
reference_url https://lists.apache.org/thread.html/r7dd079fa0ac6f47ba1ad0af98d7d0276547b8a4e005f034fb1016951@%3Cissues.zookeeper.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r7dd079fa0ac6f47ba1ad0af98d7d0276547b8a4e005f034fb1016951@%3Cissues.zookeeper.apache.org%3E
27
reference_url https://lists.apache.org/thread.html/r833a4c8bdbbfeb8a2cd38238e7b59f83edd5c1a0e508b587fc551a46@%3Cissues.hbase.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r833a4c8bdbbfeb8a2cd38238e7b59f83edd5c1a0e508b587fc551a46@%3Cissues.hbase.apache.org%3E
28
reference_url https://lists.apache.org/thread.html/r8e6c116628c1277c3cf132012a66c46a0863fa2a3037c0707d4640d4@%3Cissues.zookeeper.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r8e6c116628c1277c3cf132012a66c46a0863fa2a3037c0707d4640d4@%3Cissues.zookeeper.apache.org%3E
29
reference_url https://lists.apache.org/thread.html/r90e7b4c42a96d74c219e448bee6a329ab0cd3205c44b63471d96c3ab@%3Cissues.zookeeper.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r90e7b4c42a96d74c219e448bee6a329ab0cd3205c44b63471d96c3ab@%3Cissues.zookeeper.apache.org%3E
30
reference_url https://lists.apache.org/thread.html/r9d245c6c884bbc804a472116d730c1a01676bf24f93206a34923fc64@%3Ccommits.kafka.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r9d245c6c884bbc804a472116d730c1a01676bf24f93206a34923fc64@%3Ccommits.kafka.apache.org%3E
31
reference_url https://lists.apache.org/thread.html/r9e6158d72ef25077c2dc59fbddade2eacf7d259a2556c97a989f2fe8@%3Ccommits.pulsar.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r9e6158d72ef25077c2dc59fbddade2eacf7d259a2556c97a989f2fe8@%3Ccommits.pulsar.apache.org%3E
32
reference_url https://lists.apache.org/thread.html/rb33d65c3e5686f2e3b9bb8a032a44163b2f2ad9d31a8727338f213c1@%3Ccommits.pulsar.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rb33d65c3e5686f2e3b9bb8a032a44163b2f2ad9d31a8727338f213c1@%3Ccommits.pulsar.apache.org%3E
33
reference_url https://lists.apache.org/thread.html/rc26807be68748b3347decdcd03ae183622244b0b4cb09223d4b7e500@%3Ccommits.pulsar.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rc26807be68748b3347decdcd03ae183622244b0b4cb09223d4b7e500@%3Ccommits.pulsar.apache.org%3E
34
reference_url https://lists.apache.org/thread.html/rcb157f55b9ae41b3076801de927c6fca1669c6d8eaf11a9df5dbeb46@%3Cnotifications.zookeeper.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rcb157f55b9ae41b3076801de927c6fca1669c6d8eaf11a9df5dbeb46@%3Cnotifications.zookeeper.apache.org%3E
35
reference_url https://lists.apache.org/thread.html/rcea249eb7a0d243f21696e4985de33f3780399bf7b31ea1f6d489b8b@%3Cissues.zookeeper.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rcea249eb7a0d243f21696e4985de33f3780399bf7b31ea1f6d489b8b@%3Cissues.zookeeper.apache.org%3E
36
reference_url https://lists.apache.org/thread.html/re01890eef49d4201018f2c97e26536e3e75f441ecdbcf91986c3bc17@%3Cjira.kafka.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/re01890eef49d4201018f2c97e26536e3e75f441ecdbcf91986c3bc17@%3Cjira.kafka.apache.org%3E
37
reference_url https://lists.apache.org/thread.html/re3de01414ccf682fe0951205f806dd8e94440798fd64c55a4941de3e@%3Cjira.kafka.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/re3de01414ccf682fe0951205f806dd8e94440798fd64c55a4941de3e@%3Cjira.kafka.apache.org%3E
38
reference_url https://lists.apache.org/thread.html/re5e9bb535db779506013ef8799dc2a299e77cdad6668aa94c456dba6@%3Cjira.kafka.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/re5e9bb535db779506013ef8799dc2a299e77cdad6668aa94c456dba6@%3Cjira.kafka.apache.org%3E
39
reference_url https://lists.apache.org/thread.html/re850203ef8700cb826534dd4a1cb9f5b07bb8f6f973b39ff7838d3ba@%3Cissues.hbase.apache.org%3E
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/re850203ef8700cb826534dd4a1cb9f5b07bb8f6f973b39ff7838d3ba@%3Cissues.hbase.apache.org%3E
40
reference_url https://security.netapp.com/advisory/ntap-20210819-0006
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://security.netapp.com/advisory/ntap-20210819-0006
41
reference_url https://security.netapp.com/advisory/ntap-20210819-0006/
reference_id
reference_type
scores
url https://security.netapp.com/advisory/ntap-20210819-0006/
42
reference_url https://www.oracle.com/security-alerts/cpuapr2022.html
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.oracle.com/security-alerts/cpuapr2022.html
43
reference_url https://www.oracle.com/security-alerts/cpujan2022.html
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.oracle.com/security-alerts/cpujan2022.html
44
reference_url https://www.oracle.com/security-alerts/cpujul2022.html
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.oracle.com/security-alerts/cpujul2022.html
45
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1985223
reference_id 1985223
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1985223
46
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991188
reference_id 991188
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991188
47
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/java/webapps/50478.txt
reference_id CVE-2021-34429
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/java/webapps/50478.txt
48
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-34429
reference_id CVE-2021-34429
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-34429
49
reference_url https://github.com/advisories/GHSA-vjv5-gp2w-65vm
reference_id GHSA-vjv5-gp2w-65vm
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-vjv5-gp2w-65vm
50
reference_url https://access.redhat.com/errata/RHSA-2021:3700
reference_id RHSA-2021:3700
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:3700
51
reference_url https://access.redhat.com/errata/RHSA-2022:0138
reference_id RHSA-2022:0138
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:0138
Weaknesses
0
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
1
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
2
cwe_id 200
name Exposure of Sensitive Information to an Unauthorized Actor
description The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
3
cwe_id 551
name Incorrect Behavior Order: Authorization Before Parsing and Canonicalization
description If a web server does not fully parse requested URLs before it examines them for authorization, it may be possible for an attacker to bypass authorization protection.
4
cwe_id 863
name Incorrect Authorization
description The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check. This allows attackers to bypass intended access restrictions.
Exploits
0
date_added null
description 
Jetty suffers from a vulnerability where certain encoded URIs and ambiguous paths can access
          protected files in the WEB-INF folder. Versions effected are:
          9.4.37.v20210219, 9.4.38.v20210224 and 9.4.37-9.4.42, 10.0.1-10.0.5, 11.0.1-11.0.5.
          Exploitation can obtain any file in the WEB-INF folder, but web.xml is most likely
          to have information of value.
required_action null
due_date null
notes 
Stability:
  - crash-safe
Reliability: []
SideEffects:
  - ioc-in-logs
known_ransomware_campaign_use false
source_date_published 2021-07-15
exploit_type null
platform
source_date_updated null
data_source Metasploit
source_url https://github.com/rapid7/metasploit-framework/tree/master/modules/auxiliary/gather/jetty_web_inf_disclosure.rb
1
date_added 2021-11-03
description Eclipse Jetty 11.0.5 - Sensitive File Disclosure
required_action null
due_date null
notes null
known_ransomware_campaign_use false
source_date_published 2021-11-03
exploit_type webapps
platform java
source_date_updated 2021-11-03
data_source Exploit-DB
source_url
Severity_range_score4.0 - 6.9
Exploitability2.0
Weighted_severity6.2
Risk_score10.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-3f6t-fkt7-wub9