VulnerableCode Package Details - pkg:maven/org.eclipse.jetty/jetty-http@9.3.0

Search for packages

Package details: pkg:maven/org.eclipse.jetty/jetty-http@9.3.0

purl	pkg:maven/org.eclipse.jetty/jetty-http@9.3.0
Tags	Ghost

Next non-vulnerable version	12.0.12
Latest non-vulnerable version	12.0.12
Risk	4.0

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-1pjh-3upb-aaaq Aliases: CVE-2023-36478 GHSA-wgh7-54f2-x98r	HTTP/2 HPACK integer overflow and buffer allocation	9.4.52.v20230823 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 9.4.53 Affected by 0 other vulnerabilities. 10.0.16 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 11.0.16 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-1pjh-3upb-aaaq
Aliases:
CVE-2023-36478
GHSA-wgh7-54f2-x98r

HTTP/2 HPACK integer overflow and buffer allocation

9.4.52.v20230823
Affected by 1 other vulnerability.

9.4.53
Affected by 0 other vulnerabilities.

10.0.16
Affected by 1 other vulnerability.

11.0.16
Affected by 1 other vulnerability.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version