Search for packages
| purl | pkg:maven/org.eclipse.jetty.http2/jetty-http2-server@12.0.2 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-c4d1-jsqh-hban | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. |
CVE-2023-44487
GHSA-qppj-fm5r-hxr3 VSV00013 |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-07-03T18:51:17.024904+00:00 | GitLab Importer | Fixing | VCID-c4d1-jsqh-hban | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/jetty-http2-server/CVE-2023-44487.yml | 37.0.0 |
| 2025-07-03T16:53:39.833236+00:00 | GHSA Importer | Fixing | VCID-c4d1-jsqh-hban | https://github.com/advisories/GHSA-qppj-fm5r-hxr3 | 37.0.0 |
| 2025-07-01T18:14:52.829706+00:00 | GitLab Importer | Fixing | VCID-c4d1-jsqh-hban | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty.http2/jetty-http2-server/CVE-2023-44487.yml | 36.1.3 |
| 2025-07-01T12:13:32.959280+00:00 | GithubOSV Importer | Fixing | VCID-c4d1-jsqh-hban | https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/10/GHSA-qppj-fm5r-hxr3/GHSA-qppj-fm5r-hxr3.json | 36.1.3 |