Search for packages
Package details: pkg:maven/org.eclipse.jetty.http2/http2-server@9.4.35.v20201120
purl pkg:maven/org.eclipse.jetty.http2/http2-server@9.4.35.v20201120
Next non-vulnerable version 9.4.53.v20231009
Latest non-vulnerable version 11.0.17
Risk 10.0
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-6y3x-kyj7-aaaf
Aliases:
CVE-2023-44487
GHSA-qppj-fm5r-hxr3
VSV00013
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
9.4.53
Affected by 0 other vulnerabilities.
9.4.53.v20231009
Affected by 0 other vulnerabilities.
10.0.17
Affected by 0 other vulnerabilities.
11.0.17
Affected by 0 other vulnerabilities.
VCID-dgvv-8aq3-aaaf
Aliases:
CVE-2022-2048
GHSA-wgmr-mf83-7x4j
In Eclipse Jetty HTTP/2 server implementation, when encountering an invalid HTTP/2 request, the error handling has a bug that can wind up not properly cleaning up the active connections and associated resources. This can lead to a Denial of Service scenario where there are no enough resources left to process good requests.
9.4.47
Affected by 0 other vulnerabilities.
9.4.47.v20220610
Affected by 1 other vulnerability.
10.0.10
Affected by 1 other vulnerability.
11.0.10
Affected by 1 other vulnerability.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T16:45:00.464709+00:00 GitLab Importer Affected by VCID-6y3x-kyj7-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2023-44487.yml 36.1.3
2025-06-20T15:59:23.586876+00:00 GitLab Importer Affected by VCID-dgvv-8aq3-aaaf None 36.1.3
2025-06-20T15:59:21.884659+00:00 GitLab Importer Affected by VCID-dgvv-8aq3-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2022-2048.yml 36.1.3
2025-06-03T23:23:08.816500+00:00 GitLab Importer Affected by VCID-6y3x-kyj7-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2023-44487.yml 36.1.0
2025-06-03T22:39:54.732706+00:00 GitLab Importer Affected by VCID-dgvv-8aq3-aaaf None 36.1.0
2025-06-03T22:39:53.425441+00:00 GitLab Importer Affected by VCID-dgvv-8aq3-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2022-2048.yml 36.1.0
2025-06-02T23:20:32.966164+00:00 GitLab Importer Affected by VCID-6y3x-kyj7-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2023-44487.yml 36.1.2
2025-06-02T22:28:38.123254+00:00 GitLab Importer Affected by VCID-dgvv-8aq3-aaaf None 36.1.2
2025-06-02T22:28:36.620696+00:00 GitLab Importer Affected by VCID-dgvv-8aq3-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2022-2048.yml 36.1.2
2025-04-03T21:39:04.811561+00:00 GitLab Importer Affected by VCID-6y3x-kyj7-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2023-44487.yml 36.0.0
2025-04-03T20:08:26.916763+00:00 GitLab Importer Affected by VCID-dgvv-8aq3-aaaf None 36.0.0
2025-04-03T20:08:23.120806+00:00 GitLab Importer Affected by VCID-dgvv-8aq3-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2022-2048.yml 36.0.0
2025-02-18T07:44:27.200404+00:00 GitLab Importer Affected by VCID-dgvv-8aq3-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2022-2048.yml 35.1.0
2025-02-18T07:44:26.424492+00:00 GitLab Importer Affected by VCID-dgvv-8aq3-aaaf None 35.1.0
2025-02-18T03:38:14.499767+00:00 GitLab Importer Affected by VCID-6y3x-kyj7-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2023-44487.yml 35.1.0
2024-11-21T03:12:36.987595+00:00 GitLab Importer Affected by VCID-dgvv-8aq3-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2022-2048.yml 35.0.0
2024-11-21T00:58:16.491247+00:00 GitLab Importer Affected by VCID-6y3x-kyj7-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2023-44487.yml 35.0.0
2024-11-19T03:02:17.890664+00:00 GitLab Importer Affected by VCID-dgvv-8aq3-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2022-2048.yml 34.3.2
2024-11-19T00:39:49.745998+00:00 GitLab Importer Affected by VCID-6y3x-kyj7-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2023-44487.yml 34.3.2
2024-10-17T04:58:14.901694+00:00 GitLab Importer Affected by VCID-6y3x-kyj7-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2023-44487.yml 34.0.2
2024-10-08T03:31:31.390135+00:00 GitLab Importer Affected by VCID-dgvv-8aq3-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2022-2048.yml 34.0.2
2024-10-07T21:44:40.505085+00:00 GHSA Importer Affected by VCID-6y3x-kyj7-aaaf https://github.com/advisories/GHSA-qppj-fm5r-hxr3 34.0.2
2024-10-07T20:04:23.659210+00:00 GHSA Importer Affected by VCID-dgvv-8aq3-aaaf https://github.com/advisories/GHSA-wgmr-mf83-7x4j 34.0.2
2024-09-23T03:26:15.160543+00:00 GitLab Importer Affected by VCID-dgvv-8aq3-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2022-2048.yml 34.0.1
2024-09-22T22:14:11.405827+00:00 GHSA Importer Affected by VCID-6y3x-kyj7-aaaf https://github.com/advisories/GHSA-qppj-fm5r-hxr3 34.0.1
2024-09-22T20:43:01.975871+00:00 GHSA Importer Affected by VCID-dgvv-8aq3-aaaf https://github.com/advisories/GHSA-wgmr-mf83-7x4j 34.0.1
2024-05-17T20:50:40.198614+00:00 GHSA Importer Affected by VCID-6y3x-kyj7-aaaf https://github.com/advisories/GHSA-qppj-fm5r-hxr3 34.0.0rc4
2024-04-24T06:08:13.773290+00:00 GitLab Importer Affected by VCID-dgvv-8aq3-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2022-2048.yml 34.0.0rc4
2024-04-24T06:08:12.991116+00:00 GitLab Importer Affected by VCID-dgvv-8aq3-aaaf None 34.0.0rc4
2024-04-23T22:16:12.564595+00:00 GHSA Importer Affected by VCID-dgvv-8aq3-aaaf https://github.com/advisories/GHSA-wgmr-mf83-7x4j 34.0.0rc4
2024-04-23T22:16:07.215927+00:00 GHSA Importer Affected by VCID-dgvv-8aq3-aaaf None 34.0.0rc4
2024-01-10T08:39:20.763942+00:00 GitLab Importer Affected by VCID-dgvv-8aq3-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2022-2048.yml 34.0.0rc2
2024-01-10T08:39:19.979880+00:00 GitLab Importer Affected by VCID-dgvv-8aq3-aaaf None 34.0.0rc2
2024-01-10T00:12:56.154927+00:00 GHSA Importer Affected by VCID-dgvv-8aq3-aaaf https://github.com/advisories/GHSA-wgmr-mf83-7x4j 34.0.0rc2
2024-01-10T00:12:50.712700+00:00 GHSA Importer Affected by VCID-dgvv-8aq3-aaaf None 34.0.0rc2
2024-01-04T01:24:36.433873+00:00 GitLab Importer Affected by VCID-dgvv-8aq3-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2022-2048.yml 34.0.0rc1
2024-01-04T01:24:35.653848+00:00 GitLab Importer Affected by VCID-dgvv-8aq3-aaaf None 34.0.0rc1