VulnerableCode Package Details - pkg:maven/org.eclipse.jetty.http2/http2-server@9.4.53.v20231009

Search for packages

Package details: pkg:maven/org.eclipse.jetty.http2/http2-server@9.4.53.v20231009

Essentials
History (2)

purl	pkg:maven/org.eclipse.jetty.http2/http2-server@9.4.53.v20231009

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-c4d1-jsqh-hban	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.	CVE-2023-44487 GHSA-qppj-fm5r-hxr3 VSV00013

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-07-03T18:51:22.378131+00:00	GitLab Importer	Fixing	VCID-c4d1-jsqh-hban	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/http2-server/CVE-2023-44487.yml	37.0.0
2025-07-03T17:50:59.048907+00:00	GHSA Importer	Fixing	VCID-c4d1-jsqh-hban	https://github.com/advisories/GHSA-qppj-fm5r-hxr3	37.0.0