VulnerableCode Package Details - pkg:maven/org.eclipse.jetty/jetty-servlets@7.2.0.v20101020

Vulnerability	Summary	Fixed by
VCID-4pm7-acja-aaar Aliases: CVE-2023-26049 GHSA-p26g-97m4-6q7c	Eclipse Jetty's cookie parsing of quoted values can exfiltrate values from other cookies	9.4.51.v20230217 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.0.14 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.14 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-7sjs-prdk-aaar Aliases: CVE-2021-28169 GHSA-gwcr-j4wh-j3cq	Jetty Utility Servlets ConcatServlet Double Decoding Information Disclosure Vulnerability	9.4.40.v20210413 Affected by 7 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 9.4.41 Affected by 0 other vulnerabilities. 9.4.41.v20210516 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.0.3 Affected by 7 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.3 Affected by 7 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-vz7f-5qd7-aaar Aliases: CVE-2023-26048 GHSA-qw69-rqj8-6qw8	OutOfMemoryError for large multipart without filename in Eclipse Jetty	9.4.51.v20230217 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.0.14 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.14 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-06-20T16:28:58.378235+00:00	GitLab Importer	Affected by	VCID-vz7f-5qd7-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2023-26048.yml	36.1.3
2025-06-20T16:28:56.893891+00:00	GitLab Importer	Affected by	VCID-4pm7-acja-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2023-26049.yml	36.1.3
2025-06-20T16:28:40.861097+00:00	GitLab Importer	Affected by	VCID-vz7f-5qd7-aaar	None	36.1.3
2025-06-20T16:28:37.430635+00:00	GitLab Importer	Affected by	VCID-4pm7-acja-aaar	None	36.1.3
2025-06-20T15:09:30.615278+00:00	GitLab Importer	Affected by	VCID-7sjs-prdk-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2021-28169.yml	36.1.3
2025-06-20T15:09:28.140737+00:00	GitLab Importer	Affected by	VCID-7sjs-prdk-aaar	None	36.1.3
2025-06-03T23:08:12.240573+00:00	GitLab Importer	Affected by	VCID-vz7f-5qd7-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2023-26048.yml	36.1.0
2025-06-03T23:08:10.776358+00:00	GitLab Importer	Affected by	VCID-4pm7-acja-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2023-26049.yml	36.1.0
2025-06-03T23:07:56.409501+00:00	GitLab Importer	Affected by	VCID-vz7f-5qd7-aaar	None	36.1.0
2025-06-03T23:07:52.987976+00:00	GitLab Importer	Affected by	VCID-4pm7-acja-aaar	None	36.1.0
2025-06-03T21:52:14.208022+00:00	GitLab Importer	Affected by	VCID-7sjs-prdk-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2021-28169.yml	36.1.0
2025-06-03T21:52:12.045731+00:00	GitLab Importer	Affected by	VCID-7sjs-prdk-aaar	None	36.1.0
2025-06-02T23:04:57.386314+00:00	GitLab Importer	Affected by	VCID-vz7f-5qd7-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2023-26048.yml	36.1.2
2025-06-02T23:04:55.857961+00:00	GitLab Importer	Affected by	VCID-4pm7-acja-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2023-26049.yml	36.1.2
2025-06-02T23:04:40.184382+00:00	GitLab Importer	Affected by	VCID-vz7f-5qd7-aaar	None	36.1.2
2025-06-02T23:04:36.788898+00:00	GitLab Importer	Affected by	VCID-4pm7-acja-aaar	None	36.1.2
2025-06-02T21:37:11.544914+00:00	GitLab Importer	Affected by	VCID-7sjs-prdk-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2021-28169.yml	36.1.2
2025-06-02T21:37:09.157504+00:00	GitLab Importer	Affected by	VCID-7sjs-prdk-aaar	None	36.1.2
2025-04-03T21:07:08.757685+00:00	GitLab Importer	Affected by	VCID-vz7f-5qd7-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2023-26048.yml	36.0.0
2025-04-03T21:07:04.697732+00:00	GitLab Importer	Affected by	VCID-4pm7-acja-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2023-26049.yml	36.0.0
2025-04-03T21:06:21.471165+00:00	GitLab Importer	Affected by	VCID-vz7f-5qd7-aaar	None	36.0.0
2025-04-03T21:06:13.182078+00:00	GitLab Importer	Affected by	VCID-4pm7-acja-aaar	None	36.0.0
2025-04-03T18:36:33.763980+00:00	GitLab Importer	Affected by	VCID-7sjs-prdk-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2021-28169.yml	36.0.0
2025-04-03T18:36:27.830014+00:00	GitLab Importer	Affected by	VCID-7sjs-prdk-aaar	None	36.0.0
2025-02-18T03:11:28.364409+00:00	GitLab Importer	Affected by	VCID-4pm7-acja-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2023-26049.yml	35.1.0
2025-02-18T03:11:18.186280+00:00	GitLab Importer	Affected by	VCID-4pm7-acja-aaar	None	35.1.0
2025-02-18T03:10:47.300660+00:00	GitLab Importer	Affected by	VCID-vz7f-5qd7-aaar	None	35.1.0
2025-02-18T03:10:42.298066+00:00	GitLab Importer	Affected by	VCID-vz7f-5qd7-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2023-26048.yml	35.1.0
2025-02-18T01:59:08.449897+00:00	GitLab Importer	Affected by	VCID-7sjs-prdk-aaar	None	35.1.0
2025-02-18T01:59:05.285331+00:00	GitLab Importer	Affected by	VCID-7sjs-prdk-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2021-28169.yml	35.1.0
2024-11-21T02:49:50.783196+00:00	GitLab Importer	Affected by	VCID-4pm7-acja-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2023-26049.yml	35.0.0
2024-11-21T00:42:57.989370+00:00	GitLab Importer	Affected by	VCID-vz7f-5qd7-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2023-26048.yml	35.0.0
2024-11-21T00:05:56.177066+00:00	GitLab Importer	Affected by	VCID-7sjs-prdk-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2021-28169.yml	35.0.0
2024-11-19T02:32:59.645121+00:00	GitLab Importer	Affected by	VCID-4pm7-acja-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2023-26049.yml	34.3.2
2024-11-19T00:28:59.128624+00:00	GitLab Importer	Affected by	VCID-vz7f-5qd7-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2023-26048.yml	34.3.2
2024-11-18T23:55:39.873706+00:00	GitLab Importer	Affected by	VCID-7sjs-prdk-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2021-28169.yml	34.3.2
2024-10-08T03:08:05.594317+00:00	GitLab Importer	Affected by	VCID-4pm7-acja-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2023-26049.yml	34.0.2
2024-10-08T01:11:06.015621+00:00	GitLab Importer	Affected by	VCID-vz7f-5qd7-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2023-26048.yml	34.0.2
2024-10-08T00:45:04.572428+00:00	GitLab Importer	Affected by	VCID-7sjs-prdk-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2021-28169.yml	34.0.2
2024-10-07T19:08:24.764687+00:00	GHSA Importer	Affected by	VCID-7sjs-prdk-aaar	https://github.com/advisories/GHSA-gwcr-j4wh-j3cq	34.0.2
2024-09-23T03:04:18.586039+00:00	GitLab Importer	Affected by	VCID-4pm7-acja-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2023-26049.yml	34.0.1
2024-09-23T01:18:03.257113+00:00	GitLab Importer	Affected by	VCID-vz7f-5qd7-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2023-26048.yml	34.0.1
2024-09-23T00:54:51.613851+00:00	GitLab Importer	Affected by	VCID-7sjs-prdk-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2021-28169.yml	34.0.1
2024-09-22T19:58:06.657900+00:00	GHSA Importer	Affected by	VCID-7sjs-prdk-aaar	https://github.com/advisories/GHSA-gwcr-j4wh-j3cq	34.0.1
2024-04-24T03:40:14.563055+00:00	GitLab Importer	Affected by	VCID-4pm7-acja-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2023-26049.yml	34.0.0rc4
2024-04-24T03:40:04.360763+00:00	GitLab Importer	Affected by	VCID-4pm7-acja-aaar	None	34.0.0rc4
2024-04-24T03:39:49.888167+00:00	GitLab Importer	Affected by	VCID-vz7f-5qd7-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2023-26048.yml	34.0.0rc4
2024-04-24T03:39:41.014752+00:00	GitLab Importer	Affected by	VCID-vz7f-5qd7-aaar	None	34.0.0rc4
2024-04-24T03:05:03.860685+00:00	GitLab Importer	Affected by	VCID-7sjs-prdk-aaar	None	34.0.0rc4
2024-04-24T03:05:02.296458+00:00	GitLab Importer	Affected by	VCID-7sjs-prdk-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2021-28169.yml	34.0.0rc4
2024-04-23T21:06:03.036397+00:00	GHSA Importer	Affected by	VCID-7sjs-prdk-aaar	https://github.com/advisories/GHSA-gwcr-j4wh-j3cq	34.0.0rc4
2024-04-23T21:06:00.427706+00:00	GHSA Importer	Affected by	VCID-7sjs-prdk-aaar	None	34.0.0rc4
2024-01-10T06:21:19.531913+00:00	GitLab Importer	Affected by	VCID-4pm7-acja-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2023-26049.yml	34.0.0rc2
2024-01-10T06:21:09.271336+00:00	GitLab Importer	Affected by	VCID-4pm7-acja-aaar	None	34.0.0rc2
2024-01-10T06:20:55.057943+00:00	GitLab Importer	Affected by	VCID-vz7f-5qd7-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2023-26048.yml	34.0.0rc2
2024-01-10T06:20:46.307620+00:00	GitLab Importer	Affected by	VCID-vz7f-5qd7-aaar	None	34.0.0rc2
2024-01-10T05:44:16.292023+00:00	GitLab Importer	Affected by	VCID-7sjs-prdk-aaar	None	34.0.0rc2
2024-01-10T05:44:14.745134+00:00	GitLab Importer	Affected by	VCID-7sjs-prdk-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2021-28169.yml	34.0.0rc2
2024-01-09T23:03:07.357449+00:00	GHSA Importer	Affected by	VCID-7sjs-prdk-aaar	https://github.com/advisories/GHSA-gwcr-j4wh-j3cq	34.0.0rc2
2024-01-09T23:03:04.779485+00:00	GHSA Importer	Affected by	VCID-7sjs-prdk-aaar	None	34.0.0rc2
2024-01-03T23:08:01.332682+00:00	GitLab Importer	Affected by	VCID-4pm7-acja-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2023-26049.yml	34.0.0rc1
2024-01-03T23:07:51.391773+00:00	GitLab Importer	Affected by	VCID-4pm7-acja-aaar	None	34.0.0rc1
2024-01-03T23:07:37.361922+00:00	GitLab Importer	Affected by	VCID-vz7f-5qd7-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2023-26048.yml	34.0.0rc1
2024-01-03T23:07:28.914214+00:00	GitLab Importer	Affected by	VCID-vz7f-5qd7-aaar	None	34.0.0rc1
2024-01-03T22:32:56.259792+00:00	GitLab Importer	Affected by	VCID-7sjs-prdk-aaar	None	34.0.0rc1
2024-01-03T22:32:54.641823+00:00	GitLab Importer	Affected by	VCID-7sjs-prdk-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.eclipse.jetty/jetty-servlets/CVE-2021-28169.yml	34.0.0rc1
2024-01-03T18:48:49.977018+00:00	GHSA Importer	Affected by	VCID-7sjs-prdk-aaar	https://github.com/advisories/GHSA-gwcr-j4wh-j3cq	34.0.0rc1
2024-01-03T17:26:03.589169+00:00	GHSA Importer	Affected by	VCID-7sjs-prdk-aaar	None	34.0.0rc1

Next non-vulnerable version	9.4.54.v20240208
Latest non-vulnerable version	11.0.18
Risk	10.0