Search for packages
Package details: pkg:maven/org.eclipse.jetty.http2/http2-server@9.4.47.v20220610
purl pkg:maven/org.eclipse.jetty.http2/http2-server@9.4.47.v20220610
Next non-vulnerable version 9.4.53.v20231009
Latest non-vulnerable version 11.0.17
Risk 10.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-6y3x-kyj7-aaaf
Aliases:
CVE-2023-44487
GHSA-qppj-fm5r-hxr3
VSV00013
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
9.4.53
Affected by 0 other vulnerabilities.
9.4.53.v20231009
Affected by 0 other vulnerabilities.
10.0.17
Affected by 0 other vulnerabilities.
11.0.17
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-dgvv-8aq3-aaaf In Eclipse Jetty HTTP/2 server implementation, when encountering an invalid HTTP/2 request, the error handling has a bug that can wind up not properly cleaning up the active connections and associated resources. This can lead to a Denial of Service scenario where there are no enough resources left to process good requests. CVE-2022-2048
GHSA-wgmr-mf83-7x4j

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T16:45:00.492773+00:00 GitLab Importer Affected by VCID-6y3x-kyj7-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2023-44487.yml 36.1.3
2025-06-20T15:59:23.606278+00:00 GitLab Importer Fixing VCID-dgvv-8aq3-aaaf None 36.1.3
2025-06-20T15:59:21.906402+00:00 GitLab Importer Fixing VCID-dgvv-8aq3-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2022-2048.yml 36.1.3
2025-06-03T23:23:08.834408+00:00 GitLab Importer Affected by VCID-6y3x-kyj7-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2023-44487.yml 36.1.0
2025-06-03T22:39:54.750586+00:00 GitLab Importer Fixing VCID-dgvv-8aq3-aaaf None 36.1.0
2025-06-03T22:39:53.443409+00:00 GitLab Importer Fixing VCID-dgvv-8aq3-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2022-2048.yml 36.1.0
2025-06-02T23:20:32.989667+00:00 GitLab Importer Affected by VCID-6y3x-kyj7-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2023-44487.yml 36.1.2
2025-06-02T22:28:38.146134+00:00 GitLab Importer Fixing VCID-dgvv-8aq3-aaaf None 36.1.2
2025-06-02T22:28:36.644047+00:00 GitLab Importer Fixing VCID-dgvv-8aq3-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2022-2048.yml 36.1.2
2025-04-03T21:39:04.871565+00:00 GitLab Importer Affected by VCID-6y3x-kyj7-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2023-44487.yml 36.0.0
2025-04-03T20:08:26.974680+00:00 GitLab Importer Fixing VCID-dgvv-8aq3-aaaf None 36.0.0
2025-04-03T20:08:23.179138+00:00 GitLab Importer Fixing VCID-dgvv-8aq3-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2022-2048.yml 36.0.0
2025-02-18T07:44:27.258336+00:00 GitLab Importer Fixing VCID-dgvv-8aq3-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2022-2048.yml 35.1.0
2025-02-18T07:44:26.482138+00:00 GitLab Importer Fixing VCID-dgvv-8aq3-aaaf None 35.1.0
2025-02-18T03:38:14.558168+00:00 GitLab Importer Affected by VCID-6y3x-kyj7-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2023-44487.yml 35.1.0
2024-11-21T03:12:37.046517+00:00 GitLab Importer Fixing VCID-dgvv-8aq3-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2022-2048.yml 35.0.0
2024-11-21T00:58:16.550155+00:00 GitLab Importer Affected by VCID-6y3x-kyj7-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2023-44487.yml 35.0.0
2024-11-19T03:02:17.950686+00:00 GitLab Importer Fixing VCID-dgvv-8aq3-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2022-2048.yml 34.3.2
2024-11-19T00:39:49.803638+00:00 GitLab Importer Affected by VCID-6y3x-kyj7-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2023-44487.yml 34.3.2
2024-10-17T04:58:14.959364+00:00 GitLab Importer Affected by VCID-6y3x-kyj7-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2023-44487.yml 34.0.2
2024-10-08T03:31:31.447820+00:00 GitLab Importer Fixing VCID-dgvv-8aq3-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2022-2048.yml 34.0.2
2024-10-07T21:44:40.562464+00:00 GHSA Importer Affected by VCID-6y3x-kyj7-aaaf https://github.com/advisories/GHSA-qppj-fm5r-hxr3 34.0.2
2024-10-07T20:04:23.716504+00:00 GHSA Importer Fixing VCID-dgvv-8aq3-aaaf https://github.com/advisories/GHSA-wgmr-mf83-7x4j 34.0.2
2024-09-23T03:26:15.218051+00:00 GitLab Importer Fixing VCID-dgvv-8aq3-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2022-2048.yml 34.0.1
2024-09-22T22:14:11.467471+00:00 GHSA Importer Affected by VCID-6y3x-kyj7-aaaf https://github.com/advisories/GHSA-qppj-fm5r-hxr3 34.0.1
2024-09-22T20:43:02.033594+00:00 GHSA Importer Fixing VCID-dgvv-8aq3-aaaf https://github.com/advisories/GHSA-wgmr-mf83-7x4j 34.0.1
2024-05-17T20:50:40.261270+00:00 GHSA Importer Affected by VCID-6y3x-kyj7-aaaf https://github.com/advisories/GHSA-qppj-fm5r-hxr3 34.0.0rc4
2024-04-24T06:08:13.829418+00:00 GitLab Importer Fixing VCID-dgvv-8aq3-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2022-2048.yml 34.0.0rc4
2024-04-24T06:08:13.046465+00:00 GitLab Importer Fixing VCID-dgvv-8aq3-aaaf None 34.0.0rc4
2024-04-23T22:16:12.620561+00:00 GHSA Importer Fixing VCID-dgvv-8aq3-aaaf https://github.com/advisories/GHSA-wgmr-mf83-7x4j 34.0.0rc4
2024-04-23T22:16:07.270944+00:00 GHSA Importer Fixing VCID-dgvv-8aq3-aaaf None 34.0.0rc4
2024-01-10T08:39:20.819765+00:00 GitLab Importer Fixing VCID-dgvv-8aq3-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2022-2048.yml 34.0.0rc2
2024-01-10T08:39:20.035780+00:00 GitLab Importer Fixing VCID-dgvv-8aq3-aaaf None 34.0.0rc2
2024-01-10T00:12:56.213834+00:00 GHSA Importer Fixing VCID-dgvv-8aq3-aaaf https://github.com/advisories/GHSA-wgmr-mf83-7x4j 34.0.0rc2
2024-01-10T00:12:50.768120+00:00 GHSA Importer Fixing VCID-dgvv-8aq3-aaaf None 34.0.0rc2
2024-01-04T01:24:36.489626+00:00 GitLab Importer Fixing VCID-dgvv-8aq3-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2022-2048.yml 34.0.0rc1
2024-01-04T01:24:35.708953+00:00 GitLab Importer Fixing VCID-dgvv-8aq3-aaaf None 34.0.0rc1