Search for packages
purl | pkg:maven/org.eclipse.jetty.http2/jetty-http2-server@12.0.0 |
Vulnerability | Summary | Fixed by |
---|---|---|
VCID-c4d1-jsqh-hban
Aliases: CVE-2023-44487 GHSA-qppj-fm5r-hxr3 VSV00013 |
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. |
Affected by 0 other vulnerabilities. |
Vulnerability | Summary | Aliases |
---|---|---|
This package is not known to fix vulnerabilities. |
Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
---|---|---|---|---|---|
2025-07-03T18:51:17.020258+00:00 | GitLab Importer | Affected by | VCID-c4d1-jsqh-hban | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/jetty-http2-server/CVE-2023-44487.yml | 37.0.0 |
2025-07-03T16:53:39.831671+00:00 | GHSA Importer | Affected by | VCID-c4d1-jsqh-hban | https://github.com/advisories/GHSA-qppj-fm5r-hxr3 | 37.0.0 |
2025-07-01T18:14:52.827836+00:00 | GitLab Importer | Affected by | VCID-c4d1-jsqh-hban | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/jetty-http2-server/CVE-2023-44487.yml | 36.1.3 |