High Severity Vulnerability
This vulnerability has been rated as High severity. Immediate action is recommended.
CVE-2025-5115
High
Low
Medium
High
Critical
7.5
CVSS Score
Vulnerability Description
In Eclipse Jetty, versions <=9.4.57, <=10.0.25, <=11.0.25, <=12.0.21, <=12.1.0.alpha2, an HTTP/2 client may trigger the server to send RST_STREAM frames, for example by sending frames that are malformed or that should not be sent in a particular stream state, therefore forcing the server to consume resources such as CPU and memory.
For example, a client can open a stream and then send WINDOW_UPDATE frames with window size increment of 0, which is illegal.
Per specification https://www.rfc-editor.org/rfc/rfc9113.html#name-window_update , the server should send a RST_STREAM frame.
The client can now open another stream and send another bad WINDOW_UPDATE, therefore causing the server to consume more resources than necessary, as this case does not exceed the max number of concurrent streams, yet the client is able to create an enormous amount of streams in a short period of time.
The attack can be performed with other conditions (for example, a DATA frame for a closed stream) that cause the server to send a RST_STREAM frame.
Links:
* https://github.com/jetty/jetty.project/security/advisories/GHSA-mmxm-8w33-wc4h
CVSS Metrics
Common Vulnerability Scoring System
Vector String:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
N
Attack Complexity
L
Privileges Required
N
User Interaction
N
Scope
U
Confidentiality
N
Integrity
N
Availability
H
Known Affected Software
158 configuration(s) from 1 vendor(s)
jetty
Version:
9.3.4
CPE:
cpe:2.3:a:eclipse:jetty:9.3.4:20151005:*:*:*:*:*:*
jetty
Version:
10.0.0
CPE:
cpe:2.3:a:eclipse:jetty:10.0.0:-:*:*:*:*:*:*
jetty
Version:
9.3.6
CPE:
cpe:2.3:a:eclipse:jetty:9.3.6:20151106:*:*:*:*:*:*
jetty
Version:
9.4.30
CPE:
cpe:2.3:a:eclipse:jetty:9.4.30:20200611:*:*:*:*:*:*
jetty
Version:
9.4.8
CPE:
cpe:2.3:a:eclipse:jetty:9.4.8:20171121:*:*:*:*:*:*
jetty
Version:
9.4.37
CPE:
cpe:2.3:a:eclipse:jetty:9.4.37:20210219:*:*:*:*:*:*
jetty
Version:
9.3.7
CPE:
cpe:2.3:a:eclipse:jetty:9.3.7:20160115:*:*:*:*:*:*
jetty
Version:
11.0.10
CPE:
cpe:2.3:a:eclipse:jetty:11.0.10:*:*:*:*:*:*:*
jetty
Version:
9.3.2
CPE:
cpe:2.3:a:eclipse:jetty:9.3.2:20150730:*:*:*:*:*:*
jetty
Version:
9.4.7
CPE:
cpe:2.3:a:eclipse:jetty:9.4.7:20170914:*:*:*:*:*:*
jetty
Version:
9.3.3
CPE:
cpe:2.3:a:eclipse:jetty:9.3.3:20150825:*:*:*:*:*:*
jetty
Version:
11.0.23
CPE:
cpe:2.3:a:eclipse:jetty:11.0.23:*:*:*:*:*:*:*
jetty
Version:
9.3.11
CPE:
cpe:2.3:a:eclipse:jetty:9.3.11:20160721:*:*:*:*:*:*
jetty
Version:
9.3.5
CPE:
cpe:2.3:a:eclipse:jetty:9.3.5:20151012:*:*:*:*:*:*
jetty
Version:
11.0.1
CPE:
cpe:2.3:a:eclipse:jetty:11.0.1:*:*:*:*:*:*:*
jetty
Version:
9.4.29
CPE:
cpe:2.3:a:eclipse:jetty:9.4.29:20200521:*:*:*:*:*:*
jetty
Version:
9.4.26
CPE:
cpe:2.3:a:eclipse:jetty:9.4.26:20200117:*:*:*:*:*:*
jetty
Version:
9.4.11
CPE:
cpe:2.3:a:eclipse:jetty:9.4.11:20180605:*:*:*:*:*:*
jetty
Version:
9.4.17
CPE:
cpe:2.3:a:eclipse:jetty:9.4.17:20190418:*:*:*:*:*:*
jetty
Version:
12.0.10
CPE:
cpe:2.3:a:eclipse:jetty:12.0.10:*:*:*:*:*:*:*
jetty
Version:
10.0.16
CPE:
cpe:2.3:a:eclipse:jetty:10.0.16:*:*:*:*:*:*:*
jetty
Version:
9.4.12
CPE:
cpe:2.3:a:eclipse:jetty:9.4.12:20180830:*:*:*:*:*:*
jetty
Version:
12.0.5
CPE:
cpe:2.3:a:eclipse:jetty:12.0.5:*:*:*:*:*:*:*
jetty
Version:
9.4.55
CPE:
cpe:2.3:a:eclipse:jetty:9.4.55:*:*:*:*:*:*:*
jetty
Version:
12.0.20
CPE:
cpe:2.3:a:eclipse:jetty:12.0.20:*:*:*:*:*:*:*
jetty
Version:
10.0.22
CPE:
cpe:2.3:a:eclipse:jetty:10.0.22:*:*:*:*:*:*:*
jetty
Version:
11.0.14
CPE:
cpe:2.3:a:eclipse:jetty:11.0.14:*:*:*:*:*:*:*
jetty
Version:
12.0.6
CPE:
cpe:2.3:a:eclipse:jetty:12.0.6:*:*:*:*:*:*:*
jetty
Version:
9.3.10
CPE:
cpe:2.3:a:eclipse:jetty:9.3.10:20160621:*:*:*:*:*:*
jetty
Version:
12.0.11
CPE:
cpe:2.3:a:eclipse:jetty:12.0.11:*:*:*:*:*:*:*
jetty
Version:
9.4.47
CPE:
cpe:2.3:a:eclipse:jetty:9.4.47:20220610:*:*:*:*:*:*
jetty
Version:
9.4.33
CPE:
cpe:2.3:a:eclipse:jetty:9.4.33:20201020:*:*:*:*:*:*
jetty
Version:
9.4.21
CPE:
cpe:2.3:a:eclipse:jetty:9.4.21:20190926:*:*:*:*:*:*
jetty
Version:
9.4.9
CPE:
cpe:2.3:a:eclipse:jetty:9.4.9:20180320:*:*:*:*:*:*
jetty
Version:
12.0.8
CPE:
cpe:2.3:a:eclipse:jetty:12.0.8:*:*:*:*:*:*:*
jetty
Version:
12.0.13
CPE:
cpe:2.3:a:eclipse:jetty:12.0.13:*:*:*:*:*:*:*
jetty
Version:
9.3.23
CPE:
cpe:2.3:a:eclipse:jetty:9.3.23:20180228:*:*:*:*:*:*
jetty
Version:
9.3.8
CPE:
cpe:2.3:a:eclipse:jetty:9.3.8:20160311:*:*:*:*:*:*
jetty
Version:
9.3.24
CPE:
cpe:2.3:a:eclipse:jetty:9.3.24:20180605:*:*:*:*:*:*
jetty
Version:
9.4.27
CPE:
cpe:2.3:a:eclipse:jetty:9.4.27:20200227:*:*:*:*:*:*
jetty
Version:
9.4.3
CPE:
cpe:2.3:a:eclipse:jetty:9.4.3:20170317:*:*:*:*:*:*
jetty
Version:
9.4.40
CPE:
cpe:2.3:a:eclipse:jetty:9.4.40:*:*:*:*:*:*:*
jetty
Version:
10.0.2
CPE:
cpe:2.3:a:eclipse:jetty:10.0.2:*:*:*:*:*:*:*
jetty
Version:
9.4.14
CPE:
cpe:2.3:a:eclipse:jetty:9.4.14:20181114:*:*:*:*:*:*
jetty
Version:
12.0.14
CPE:
cpe:2.3:a:eclipse:jetty:12.0.14:*:*:*:*:*:*:*
jetty
Version:
9.3.0
CPE:
cpe:2.3:a:eclipse:jetty:9.3.0:maintenance0:*:*:*:*:*:*
jetty
Version:
9.3.9
CPE:
cpe:2.3:a:eclipse:jetty:9.3.9:20160517:*:*:*:*:*:*
jetty
Version:
11.0.20
CPE:
cpe:2.3:a:eclipse:jetty:11.0.20:*:*:*:*:*:*:*
jetty
Version:
9.3.17
CPE:
cpe:2.3:a:eclipse:jetty:9.3.17:20170317:*:*:*:*:*:*
jetty
Version:
9.3.22
CPE:
cpe:2.3:a:eclipse:jetty:9.3.22:20171030:*:*:*:*:*:*
jetty
Version:
11.0.7
CPE:
cpe:2.3:a:eclipse:jetty:11.0.7:*:*:*:*:*:*:*
jetty
Version:
12.0.15
CPE:
cpe:2.3:a:eclipse:jetty:12.0.15:*:*:*:*:*:*:*
jetty
Version:
9.3.21
CPE:
cpe:2.3:a:eclipse:jetty:9.3.21:20170918:*:*:*:*:*:*
jetty
Version:
12.0.16
CPE:
cpe:2.3:a:eclipse:jetty:12.0.16:*:*:*:*:*:*:*
jetty
Version:
11.0.5
CPE:
cpe:2.3:a:eclipse:jetty:11.0.5:*:*:*:*:*:*:*
jetty
Version:
9.4.53
CPE:
cpe:2.3:a:eclipse:jetty:9.4.53:20231009:*:*:*:*:*:*
jetty
Version:
10.0.13
CPE:
cpe:2.3:a:eclipse:jetty:10.0.13:*:*:*:*:*:*:*
jetty
Version:
9.4.24
CPE:
cpe:2.3:a:eclipse:jetty:9.4.24:20191120:*:*:*:*:*:*
jetty
Version:
9.4.19
CPE:
cpe:2.3:a:eclipse:jetty:9.4.19:20190610:*:*:*:*:*:*
jetty
Version:
11.0.3
CPE:
cpe:2.3:a:eclipse:jetty:11.0.3:*:*:*:*:*:*:*
jetty
Version:
11.0.4
CPE:
cpe:2.3:a:eclipse:jetty:11.0.4:*:*:*:*:*:*:*
jetty
Version:
11.0.16
CPE:
cpe:2.3:a:eclipse:jetty:11.0.16:*:*:*:*:*:*:*
jetty
Version:
11.0.0
CPE:
cpe:2.3:a:eclipse:jetty:11.0.0:beta3:*:*:*:*:*:*
jetty
Version:
9.4.43
CPE:
cpe:2.3:a:eclipse:jetty:9.4.43:20210629:*:*:*:*:*:*
jetty
Version:
9.4.15
CPE:
cpe:2.3:a:eclipse:jetty:9.4.15:20190215:*:*:*:*:*:*
jetty
Version:
11.0.19
CPE:
cpe:2.3:a:eclipse:jetty:11.0.19:*:*:*:*:*:*:*
jetty
Version:
10.0.20
CPE:
cpe:2.3:a:eclipse:jetty:10.0.20:*:*:*:*:*:*:*
jetty
Version:
9.4.42
CPE:
cpe:2.3:a:eclipse:jetty:9.4.42:20210604:*:*:*:*:*:*
jetty
Version:
9.4.41
CPE:
cpe:2.3:a:eclipse:jetty:9.4.41:*:*:*:*:*:*:*
jetty
Version:
9.4.10
CPE:
cpe:2.3:a:eclipse:jetty:9.4.10:20180503:*:*:*:*:*:*
jetty
Version:
11.0.8
CPE:
cpe:2.3:a:eclipse:jetty:11.0.8:*:*:*:*:*:*:*
jetty
Version:
11.0.2
CPE:
cpe:2.3:a:eclipse:jetty:11.0.2:*:*:*:*:*:*:*
jetty
Version:
10.0.15
CPE:
cpe:2.3:a:eclipse:jetty:10.0.15:*:*:*:*:*:*:*
jetty
Version:
10.0.19
CPE:
cpe:2.3:a:eclipse:jetty:10.0.19:*:*:*:*:*:*:*
jetty
Version:
10.0.18
CPE:
cpe:2.3:a:eclipse:jetty:10.0.18:*:*:*:*:*:*:*
jetty
Version:
12.0.1
CPE:
cpe:2.3:a:eclipse:jetty:12.0.1:*:*:*:*:*:*:*
jetty
Version:
10.0.1
CPE:
cpe:2.3:a:eclipse:jetty:10.0.1:*:*:*:*:*:*:*
jetty
Version:
9.3.25
CPE:
cpe:2.3:a:eclipse:jetty:9.3.25:20180904:*:*:*:*:*:*
jetty
Version:
9.4.4
CPE:
cpe:2.3:a:eclipse:jetty:9.4.4:20170410:*:*:*:*:*:*
jetty
Version:
10.0.7
CPE:
cpe:2.3:a:eclipse:jetty:10.0.7:*:*:*:*:*:*:*
jetty
Version:
9.4.0
CPE:
cpe:2.3:a:eclipse:jetty:9.4.0:20161207:*:*:*:*:*:*
jetty
Version:
12.0.12
CPE:
cpe:2.3:a:eclipse:jetty:12.0.12:*:*:*:*:*:*:*
jetty
Version:
9.4.38
CPE:
cpe:2.3:a:eclipse:jetty:9.4.38:20210224:*:*:*:*:*:*
jetty
Version:
12.0.2
CPE:
cpe:2.3:a:eclipse:jetty:12.0.2:*:*:*:*:*:*:*
jetty
Version:
9.4.20
CPE:
cpe:2.3:a:eclipse:jetty:9.4.20:20190813:*:*:*:*:*:*
jetty
Version:
10.0.21
CPE:
cpe:2.3:a:eclipse:jetty:10.0.21:*:*:*:*:*:*:*
jetty
Version:
9.3.1
CPE:
cpe:2.3:a:eclipse:jetty:9.3.1:20150714:*:*:*:*:*:*
jetty
Version:
9.4.52
CPE:
cpe:2.3:a:eclipse:jetty:9.4.52:20230823:*:*:*:*:*:*
jetty
Version:
9.3.13
CPE:
cpe:2.3:a:eclipse:jetty:9.3.13:20161014:*:*:*:*:*:*
jetty
Version:
9.4.48
CPE:
cpe:2.3:a:eclipse:jetty:9.4.48:20220622:*:*:*:*:*:*
jetty
Version:
9.4.18
CPE:
cpe:2.3:a:eclipse:jetty:9.4.18:20190429:*:*:*:*:*:*
jetty
Version:
9.3.14
CPE:
cpe:2.3:a:eclipse:jetty:9.3.14:20161028:*:*:*:*:*:*
jetty
Version:
9.4.23
CPE:
cpe:2.3:a:eclipse:jetty:9.4.23:20191118:*:*:*:*:*:*
jetty
Version:
9.3.18
CPE:
cpe:2.3:a:eclipse:jetty:9.3.18:20170406:*:*:*:*:*:*
jetty
Version:
9.4.2
CPE:
cpe:2.3:a:eclipse:jetty:9.4.2:20170220:*:*:*:*:*:*
jetty
Version:
11.0.6
CPE:
cpe:2.3:a:eclipse:jetty:11.0.6:*:*:*:*:*:*:*
jetty
Version:
10.0.3
CPE:
cpe:2.3:a:eclipse:jetty:10.0.3:*:*:*:*:*:*:*
jetty
Version:
11.0.22
CPE:
cpe:2.3:a:eclipse:jetty:11.0.22:*:*:*:*:*:*:*
jetty
Version:
10.0.9
CPE:
cpe:2.3:a:eclipse:jetty:10.0.9:*:*:*:*:*:*:*
jetty
Version:
11.0.11
CPE:
cpe:2.3:a:eclipse:jetty:11.0.11:*:*:*:*:*:*:*
jetty
Version:
12.0.17
CPE:
cpe:2.3:a:eclipse:jetty:12.0.17:*:*:*:*:*:*:*
jetty
Version:
9.4.1
CPE:
cpe:2.3:a:eclipse:jetty:9.4.1:20170120:*:*:*:*:*:*
jetty
Version:
10.0.17
CPE:
cpe:2.3:a:eclipse:jetty:10.0.17:*:*:*:*:*:*:*
jetty
Version:
11.0.9
CPE:
cpe:2.3:a:eclipse:jetty:11.0.9:*:*:*:*:*:*:*
jetty
Version:
9.4.32
CPE:
cpe:2.3:a:eclipse:jetty:9.4.32:20200930:*:*:*:*:*:*
jetty
Version:
9.4.16
CPE:
cpe:2.3:a:eclipse:jetty:9.4.16:20190411:*:*:*:*:*:*
jetty
Version:
12.0.7
CPE:
cpe:2.3:a:eclipse:jetty:12.0.7:*:*:*:*:*:*:*
jetty
Version:
9.3.26
CPE:
cpe:2.3:a:eclipse:jetty:9.3.26:20190403:*:*:*:*:*:*
jetty
Version:
9.4.5
CPE:
cpe:2.3:a:eclipse:jetty:9.4.5:20170502:*:*:*:*:*:*
jetty
Version:
10.0.23
CPE:
cpe:2.3:a:eclipse:jetty:10.0.23:*:*:*:*:*:*:*
jetty
Version:
9.4.51
CPE:
cpe:2.3:a:eclipse:jetty:9.4.51:20230217:*:*:*:*:*:*
jetty
Version:
9.4.44
CPE:
cpe:2.3:a:eclipse:jetty:9.4.44:20210927:*:*:*:*:*:*
jetty
Version:
9.4.57
CPE:
cpe:2.3:a:eclipse:jetty:9.4.57:-:*:*:*:*:*:*
jetty
Version:
9.3.29
CPE:
cpe:2.3:a:eclipse:jetty:9.3.29:20201019:*:*:*:*:*:*
jetty
Version:
10.0.10
CPE:
cpe:2.3:a:eclipse:jetty:10.0.10:*:*:*:*:*:*:*
jetty
Version:
9.3.15
CPE:
cpe:2.3:a:eclipse:jetty:9.3.15:20161220:*:*:*:*:*:*
jetty
Version:
9.3.16
CPE:
cpe:2.3:a:eclipse:jetty:9.3.16:20170119:*:*:*:*:*:*
jetty
Version:
9.4.25
CPE:
cpe:2.3:a:eclipse:jetty:9.4.25:20191220:*:*:*:*:*:*
jetty
Version:
10.0.5
CPE:
cpe:2.3:a:eclipse:jetty:10.0.5:*:*:*:*:*:*:*
jetty
Version:
9.4.49
CPE:
cpe:2.3:a:eclipse:jetty:9.4.49:20220914:*:*:*:*:*:*
jetty
Version:
11.0.21
CPE:
cpe:2.3:a:eclipse:jetty:11.0.21:*:*:*:*:*:*:*
jetty
Version:
12.0.9
CPE:
cpe:2.3:a:eclipse:jetty:12.0.9:*:*:*:*:*:*:*
jetty
Version:
12.0.19
CPE:
cpe:2.3:a:eclipse:jetty:12.0.19:*:*:*:*:*:*:*
jetty
Version:
10.0.4
CPE:
cpe:2.3:a:eclipse:jetty:10.0.4:*:*:*:*:*:*:*
jetty
Version:
9.4.31
CPE:
cpe:2.3:a:eclipse:jetty:9.4.31:20200723:*:*:*:*:*:*
jetty
Version:
9.3.12
CPE:
cpe:2.3:a:eclipse:jetty:9.3.12:20160915:*:*:*:*:*:*
jetty
Version:
12.0.18
CPE:
cpe:2.3:a:eclipse:jetty:12.0.18:*:*:*:*:*:*:*
jetty
Version:
11.0.15
CPE:
cpe:2.3:a:eclipse:jetty:11.0.15:*:*:*:*:*:*:*
jetty
Version:
10.0.6
CPE:
cpe:2.3:a:eclipse:jetty:10.0.6:*:*:*:*:*:*:*
jetty
Version:
10.0.8
CPE:
cpe:2.3:a:eclipse:jetty:10.0.8:*:*:*:*:*:*:*
jetty
Version:
10.0.24
CPE:
cpe:2.3:a:eclipse:jetty:10.0.24:*:*:*:*:*:*:*
jetty
Version:
12.0.0
CPE:
cpe:2.3:a:eclipse:jetty:12.0.0:-:*:*:*:*:*:*
jetty
Version:
9.4.46
CPE:
cpe:2.3:a:eclipse:jetty:9.4.46:20220331:*:*:*:*:*:*
jetty
Version:
9.4.45
CPE:
cpe:2.3:a:eclipse:jetty:9.4.45:20220203:*:*:*:*:*:*
jetty
Version:
9.4.35
CPE:
cpe:2.3:a:eclipse:jetty:9.4.35:*:*:*:*:*:*:*
jetty
Version:
12.1.0
CPE:
cpe:2.3:a:eclipse:jetty:12.1.0:alpha0:*:*:*:*:*:*
jetty
Version:
11.0.13
CPE:
cpe:2.3:a:eclipse:jetty:11.0.13:*:*:*:*:*:*:*
jetty
Version:
9.4.39
CPE:
cpe:2.3:a:eclipse:jetty:9.4.39:*:*:*:*:*:*:*
jetty
Version:
11.0.18
CPE:
cpe:2.3:a:eclipse:jetty:11.0.18:*:*:*:*:*:*:*
jetty
Version:
11.0.12
CPE:
cpe:2.3:a:eclipse:jetty:11.0.12:*:*:*:*:*:*:*
jetty
Version:
9.4.13
CPE:
cpe:2.3:a:eclipse:jetty:9.4.13:20181111:*:*:*:*:*:*
jetty
Version:
11.0.24
CPE:
cpe:2.3:a:eclipse:jetty:11.0.24:*:*:*:*:*:*:*
jetty
Version:
9.4.6
CPE:
cpe:2.3:a:eclipse:jetty:9.4.6:20170531:*:*:*:*:*:*
jetty
Version:
9.4.50
CPE:
cpe:2.3:a:eclipse:jetty:9.4.50:20221201:*:*:*:*:*:*
jetty
Version:
9.3.27
CPE:
cpe:2.3:a:eclipse:jetty:9.3.27:20190418:*:*:*:*:*:*
jetty
Version:
9.3.19
CPE:
cpe:2.3:a:eclipse:jetty:9.3.19:20170502:*:*:*:*:*:*
jetty
Version:
12.0.3
CPE:
cpe:2.3:a:eclipse:jetty:12.0.3:*:*:*:*:*:*:*
jetty
Version:
9.4.34
CPE:
cpe:2.3:a:eclipse:jetty:9.4.34:*:*:*:*:*:*:*
jetty
Version:
12.0.21
CPE:
cpe:2.3:a:eclipse:jetty:12.0.21:*:*:*:*:*:*:*
jetty
Version:
10.0.12
CPE:
cpe:2.3:a:eclipse:jetty:10.0.12:*:*:*:*:*:*:*
jetty
Version:
12.0.4
CPE:
cpe:2.3:a:eclipse:jetty:12.0.4:*:*:*:*:*:*:*
jetty
Version:
10.0.14
CPE:
cpe:2.3:a:eclipse:jetty:10.0.14:*:*:*:*:*:*:*
jetty
Version:
9.3.20
CPE:
cpe:2.3:a:eclipse:jetty:9.3.20:20170531:*:*:*:*:*:*
jetty
Version:
9.4.36
CPE:
cpe:2.3:a:eclipse:jetty:9.4.36:20210114:*:*:*:*:*:*
jetty
Version:
9.4.22
CPE:
cpe:2.3:a:eclipse:jetty:9.4.22:20191022:*:*:*:*:*:*
jetty
Version:
10.0.11
CPE:
cpe:2.3:a:eclipse:jetty:10.0.11:*:*:*:*:*:*:*
jetty
Version:
11.0.17
CPE:
cpe:2.3:a:eclipse:jetty:11.0.17:*:*:*:*:*:*:*
jetty
Version:
9.4.28
CPE:
cpe:2.3:a:eclipse:jetty:9.4.28:20200408:*:*:*:*:*:*
This vulnerability affects 158 software configuration(s). Ensure you patch all affected systems.
Oracle
CPUAPR2026
Oracle Critical Patch Update Advisory - April 2026
Severity
Critical
Released
Apr 21, 2026
Restart Required
Security Update
Oracle
CPUJAN2026
Oracle Critical Patch Update Advisory - January 2026
Severity
Critical
Released
Jan 20, 2026
Restart Required
Security Update
Oracle
CPUOCT2025
Oracle Critical Patch Update Advisory - October 2025
Severity
Critical
Released
Oct 21, 2025
Restart Required
Security Update
SUSE
CVE-2025-5115
CVE-2025-5115
Severity
Unknown
Released
Sep 22, 2025
Security Update
References & Resources
-
https://github.com/jetty/jetty.project/pull/13449emo@eclipse.org Issue Tracking
-
https://github.com/jetty/jetty.project/releases/tag/jetty-10.0.26emo@eclipse.org Release Notes
-
https://github.com/jetty/jetty.project/releases/tag/jetty-11.0.26emo@eclipse.org Release Notes
-
https://github.com/jetty/jetty.project/releases/tag/jetty-12.0.25emo@eclipse.org Release Notes
-
https://github.com/jetty/jetty.project/releases/tag/jetty-12.1.0emo@eclipse.org Release Notes
-
https://github.com/jetty/jetty.project/releases/tag/jetty-9.4.58.v20250814emo@eclipse.org Release Notes
-
https://github.com/jetty/jetty.project/security/advisories/GHSA-mmxm-8w33-wc4hemo@eclipse.org Third Party Advisory
-
http://www.openwall.com/lists/oss-security/2025/08/20/4af854a3a-2127-422b-91ae-364da2661108 Third Party Advisory
-
http://www.openwall.com/lists/oss-security/2025/09/17/1af854a3a-2127-422b-91ae-364da2661108 Third Party Advisory
-
https://lists.debian.org/debian-lts-announce/2025/09/msg00014.htmlaf854a3a-2127-422b-91ae-364da2661108 Issue Tracking Mailing List
-
https://www.kb.cert.org/vuls/id/767506af854a3a-2127-422b-91ae-364da2661108 Third Party Advisory
Severity Details
7.5
out of 10.0
High
Weakness Type (CWE)
CWE-400
Uncontrolled Resource Consumption
- Description
- The product does not properly control the allocation and maintenance of a limited resource.
- Exploit Likelihood
- High
- Typical Severity
- High
- Abstraction Level
- Class
Key Information
- Published Date
- August 20, 2025
