Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2022-2047 (GCVE-0-2022-2047)
Vulnerability from cvelistv5 – Published: 2022-07-07 20:45 – Updated: 2024-08-03 00:24
VLAI
EPSS
Summary
In Eclipse Jetty versions 9.4.0 thru 9.4.46, and 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, the parsing of the authority segment of an http scheme URI, the Jetty HttpURI class improperly detects an invalid input as a hostname. This can lead to failures in a Proxy scenario.
Severity
CWE
Assigner
References
4 references
| URL | Tags |
|---|---|
| https://github.com/eclipse/jetty.project/security… | x_refsource_CONFIRM |
| https://www.debian.org/security/2022/dsa-5198 | vendor-advisoryx_refsource_DEBIAN |
| https://lists.debian.org/debian-lts-announce/2022… | mailing-listx_refsource_MLIST |
| https://security.netapp.com/advisory/ntap-2022090… | x_refsource_CONFIRM |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| The Eclipse Foundation | Eclipse Jetty |
Affected:
9.4.0 , < unspecified
(custom)
Affected: unspecified , ≤ 9.4.46 (custom) Affected: 10.0.0 , < unspecified (custom) Affected: unspecified , ≤ 10.0.9 (custom) Affected: 11.0.0 , < unspecified (custom) Affected: unspecified , ≤ 11.0.9 (custom) |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T00:24:44.138Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://github.com/eclipse/jetty.project/security/advisories/GHSA-cj7v-27pg-wf7q"
},
{
"name": "DSA-5198",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2022/dsa-5198"
},
{
"name": "[debian-lts-announce] 20220821 [SECURITY] [DLA 3079-1] jetty9 security update",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2022/08/msg00011.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20220901-0006/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Eclipse Jetty",
"vendor": "The Eclipse Foundation",
"versions": [
{
"lessThan": "unspecified",
"status": "affected",
"version": "9.4.0",
"versionType": "custom"
},
{
"lessThanOrEqual": "9.4.46",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
},
{
"lessThan": "unspecified",
"status": "affected",
"version": "10.0.0",
"versionType": "custom"
},
{
"lessThanOrEqual": "10.0.9",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
},
{
"lessThan": "unspecified",
"status": "affected",
"version": "11.0.0",
"versionType": "custom"
},
{
"lessThanOrEqual": "11.0.9",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In Eclipse Jetty versions 9.4.0 thru 9.4.46, and 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, the parsing of the authority segment of an http scheme URI, the Jetty HttpURI class improperly detects an invalid input as a hostname. This can lead to failures in a Proxy scenario."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 2.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-20",
"description": "CWE-20",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-09-01T13:06:30.000Z",
"orgId": "e51fbebd-6053-4e49-959f-1b94eeb69a2c",
"shortName": "eclipse"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/eclipse/jetty.project/security/advisories/GHSA-cj7v-27pg-wf7q"
},
{
"name": "DSA-5198",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2022/dsa-5198"
},
{
"name": "[debian-lts-announce] 20220821 [SECURITY] [DLA 3079-1] jetty9 security update",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.debian.org/debian-lts-announce/2022/08/msg00011.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://security.netapp.com/advisory/ntap-20220901-0006/"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@eclipse.org",
"ID": "CVE-2022-2047",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Eclipse Jetty",
"version": {
"version_data": [
{
"version_affected": "\u003e=",
"version_value": "9.4.0"
},
{
"version_affected": "\u003c=",
"version_value": "9.4.46"
},
{
"version_affected": "\u003e=",
"version_value": "10.0.0"
},
{
"version_affected": "\u003c=",
"version_value": "10.0.9"
},
{
"version_affected": "\u003e=",
"version_value": "11.0.0"
},
{
"version_affected": "\u003c=",
"version_value": "11.0.9"
}
]
}
}
]
},
"vendor_name": "The Eclipse Foundation"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "In Eclipse Jetty versions 9.4.0 thru 9.4.46, and 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, the parsing of the authority segment of an http scheme URI, the Jetty HttpURI class improperly detects an invalid input as a hostname. This can lead to failures in a Proxy scenario."
}
]
},
"impact": {
"cvss": {
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-20"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/eclipse/jetty.project/security/advisories/GHSA-cj7v-27pg-wf7q",
"refsource": "CONFIRM",
"url": "https://github.com/eclipse/jetty.project/security/advisories/GHSA-cj7v-27pg-wf7q"
},
{
"name": "DSA-5198",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2022/dsa-5198"
},
{
"name": "[debian-lts-announce] 20220821 [SECURITY] [DLA 3079-1] jetty9 security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2022/08/msg00011.html"
},
{
"name": "https://security.netapp.com/advisory/ntap-20220901-0006/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20220901-0006/"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "e51fbebd-6053-4e49-959f-1b94eeb69a2c",
"assignerShortName": "eclipse",
"cveId": "CVE-2022-2047",
"datePublished": "2022-07-07T20:45:12.000Z",
"dateReserved": "2022-06-09T00:00:00.000Z",
"dateUpdated": "2024-08-03T00:24:44.138Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2022-2047",
"date": "2026-05-29",
"epss": "0.0057",
"percentile": "0.68889"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2022-2047\",\"sourceIdentifier\":\"emo@eclipse.org\",\"published\":\"2022-07-07T21:15:10.093\",\"lastModified\":\"2024-11-21T07:00:13.840\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In Eclipse Jetty versions 9.4.0 thru 9.4.46, and 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, the parsing of the authority segment of an http scheme URI, the Jetty HttpURI class improperly detects an invalid input as a hostname. This can lead to failures in a Proxy scenario.\"},{\"lang\":\"es\",\"value\":\"En Eclipse Jetty versiones 9.4.0 hasta 9.4.46, y 10.0.0 hasta 10.0.9, y 11.0.0 hasta 11.0.9, el an\u00e1lisis sint\u00e1ctico del segmento de autoridad de un URI de esquema http, la clase Jetty HttpURI detecta inapropiadamente una entrada no v\u00e1lida como nombre de host. Esto puede conllevar a fallos en un escenario Proxy\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"emo@eclipse.org\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N\",\"baseScore\":2.7,\"baseSeverity\":\"LOW\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.2,\"impactScore\":1.4},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N\",\"baseScore\":2.7,\"baseSeverity\":\"LOW\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.2,\"impactScore\":1.4}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:S/C:N/I:P/A:N\",\"baseScore\":4.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"emo@eclipse.org\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:eclipse:jetty:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"9.4.46\",\"matchCriteriaId\":\"0E883CFA-BABF-43AF-9E8E-216396CAC69F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:eclipse:jetty:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"10.0.0\",\"versionEndExcluding\":\"10.0.9\",\"matchCriteriaId\":\"DB90B12D-86AF-4A9F-8C44-0213FA056919\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:eclipse:jetty:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.0.0\",\"versionEndIncluding\":\"11.0.9\",\"matchCriteriaId\":\"4A594F05-BB45-497C-ADF2-2568B3989C65\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA6FEEC2-9F11-4643-8827-749718254FED\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:element_plug-in_for_vcenter_server:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"214712B6-59AF-4B5E-84BF-AF3C74A390EA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:management_services_for_element_software_and_netapp_hci:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FDAC85F0-93AF-4BE3-AE1A-8ADAF1CDF9AB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BDFB1169-41A0-4A86-8E4F-FDA9730B1E94\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:solidfire_\\\\\u0026_hci_storage_node:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D452B464-1200-4B72-9A89-42DC58486191\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AD7447BC-F315-4298-A822-549942FC118B\"}]}]}],\"references\":[{\"url\":\"https://github.com/eclipse/jetty.project/security/advisories/GHSA-cj7v-27pg-wf7q\",\"source\":\"emo@eclipse.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2022/08/msg00011.html\",\"source\":\"emo@eclipse.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20220901-0006/\",\"source\":\"emo@eclipse.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2022/dsa-5198\",\"source\":\"emo@eclipse.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/eclipse/jetty.project/security/advisories/GHSA-cj7v-27pg-wf7q\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2022/08/msg00011.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20220901-0006/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2022/dsa-5198\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
Title
Уязвимость контейнера сервлетов Eclipse Jetty, существующая из-за недостаточной проверки входных данных, позволяющая нарушителю привести к сбоям в сценарии прокси
Description
Уязвимость контейнера сервлетов Eclipse Jetty существует из-за недостаточной проверки входных данных. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, привести к сбоям в сценарии прокси
Severity
Vendor
Сообщество свободного программного обеспечения, Eclipse Foundation, АО "НППКТ"
Software Name
Debian GNU/Linux, Jetty, ОСОН ОСнова Оnyx (запись в едином реестре российских программ №5913)
Software Version
10 (Debian GNU/Linux), 11 (Debian GNU/Linux), от 11.0.0 до 11.0.9 включительно (Jetty), до 9.4.46 (Jetty), от 10.0.0 до 10.0.9 (Jetty), до 2.8 (ОСОН ОСнова Оnyx)
Possible Mitigations
Использование рекомендаций:
Для Debian:
https://security-tracker.debian.org/tracker/CVE-2022-2047
Для Eclipse Jetty:
https://github.com/eclipse/jetty.project/security/advisories/GHSA-cj7v-27pg-wf7q
Для ОСОН ОСнова Оnyx:
Обновление программного обеспечения jetty9 до версии 9.4.39+repack-3+deb11u1osnova1
Reference
https://nvd.nist.gov/vuln/detail/CVE-2022-2047
https://github.com/eclipse/jetty.project/security/advisories/GHSA-cj7v-27pg-wf7q
https://lists.debian.org/debian-lts-announce/2022/08/msg00011.html
https://www.debian.org/security/2022/dsa-5198
https://поддержка.нппкт.рф/bin/view/ОСнова/Обновления/2.8/
CWE
CWE-20
{
"CVSS 2.0": "AV:N/AC:L/Au:S/C:N/I:P/A:N",
"CVSS 3.0": "AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "\u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f, Eclipse Foundation, \u0410\u041e \"\u041d\u041f\u041f\u041a\u0422\"",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "10 (Debian GNU/Linux), 11 (Debian GNU/Linux), \u043e\u0442 11.0.0 \u0434\u043e 11.0.9 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (Jetty), \u0434\u043e 9.4.46 (Jetty), \u043e\u0442 10.0.0 \u0434\u043e 10.0.9 (Jetty), \u0434\u043e 2.8 (\u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\n\n\u0414\u043b\u044f Debian:\nhttps://security-tracker.debian.org/tracker/CVE-2022-2047\n\n\u0414\u043b\u044f Eclipse Jetty:\nhttps://github.com/eclipse/jetty.project/security/advisories/GHSA-cj7v-27pg-wf7q\n\n\u0414\u043b\u044f \u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx:\n\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f jetty9 \u0434\u043e \u0432\u0435\u0440\u0441\u0438\u0438 9.4.39+repack-3+deb11u1osnova1",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "07.07.2022",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "13.09.2023",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "31.01.2023",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2023-00477",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2022-2047",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Debian GNU/Linux, Jetty, \u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21165913)",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "\u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 10 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 11 , \u0410\u041e \"\u041d\u041f\u041f\u041a\u0422\" \u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx \u0434\u043e 2.8 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21165913)",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440\u0430 \u0441\u0435\u0440\u0432\u043b\u0435\u0442\u043e\u0432 Eclipse Jetty, \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u044e\u0449\u0430\u044f \u0438\u0437-\u0437\u0430 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438 \u0432\u0445\u043e\u0434\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0441\u0431\u043e\u044f\u043c \u0432 \u0441\u0446\u0435\u043d\u0430\u0440\u0438\u0438 \u043f\u0440\u043e\u043a\u0441\u0438",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u0430\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0430 \u0432\u0432\u043e\u0434\u0438\u043c\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 (CWE-20)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440\u0430 \u0441\u0435\u0440\u0432\u043b\u0435\u0442\u043e\u0432 Eclipse Jetty \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u0435\u0442 \u0438\u0437-\u0437\u0430 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438 \u0432\u0445\u043e\u0434\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e, \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0441\u0431\u043e\u044f\u043c \u0432 \u0441\u0446\u0435\u043d\u0430\u0440\u0438\u0438 \u043f\u0440\u043e\u043a\u0441\u0438",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u0441\u0443\u0440\u0441\u0430\u043c\u0438",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://nvd.nist.gov/vuln/detail/CVE-2022-2047\nhttps://github.com/eclipse/jetty.project/security/advisories/GHSA-cj7v-27pg-wf7q \nhttps://lists.debian.org/debian-lts-announce/2022/08/msg00011.html \nhttps://www.debian.org/security/2022/dsa-5198\nhttps://\u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0430.\u043d\u043f\u043f\u043a\u0442.\u0440\u0444/bin/view/\u041e\u0421\u043d\u043e\u0432\u0430/\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f/2.8/",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430, \u0421\u0435\u0442\u0435\u0432\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e, \u0421\u0435\u0442\u0435\u0432\u043e\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-20",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 4)\n\u041d\u0438\u0437\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 2,7)"
}
CERTFR-2022-AVI-952
Vulnerability from certfr_avis - Published: 2022-10-26 - Updated: 2022-10-26
De multiples vulnérabilités ont été découvertes dans IBM QRadar. Certaines d'entre elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur, une exécution de code arbitraire à distance et un déni de service à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "QRadar SIEM versions 7.5 ant\u00e9rieures \u00e0 7.5.0 Update Pack 3",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar SIEM versions 7.4 ant\u00e9rieures \u00e0 7.4.3 Fix Pack 7",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2021-33036",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-33036"
},
{
"name": "CVE-2022-30973",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-30973"
},
{
"name": "CVE-2021-38185",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-38185"
},
{
"name": "CVE-2022-25169",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-25169"
},
{
"name": "CVE-2022-25762",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-25762"
},
{
"name": "CVE-2022-2048",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2048"
},
{
"name": "CVE-2018-25032",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-25032"
},
{
"name": "CVE-2022-32250",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32250"
},
{
"name": "CVE-2022-1966",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1966"
},
{
"name": "CVE-2022-2047",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2047"
},
{
"name": "CVE-2021-37404",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-37404"
},
{
"name": "CVE-2022-1271",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1271"
},
{
"name": "CVE-2022-22968",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22968"
},
{
"name": "CVE-2022-0492",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0492"
},
{
"name": "CVE-2022-1552",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1552"
},
{
"name": "CVE-2020-15522",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15522"
},
{
"name": "CVE-2022-1729",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1729"
},
{
"name": "CVE-2022-1154",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1154"
},
{
"name": "CVE-2022-30126",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-30126"
},
{
"name": "CVE-2022-29885",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-29885"
},
{
"name": "CVE-2022-33879",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-33879"
},
{
"name": "CVE-2021-3634",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3634"
}
],
"initial_release_date": "2022-10-26T00:00:00",
"last_revision_date": "2022-10-26T00:00:00",
"links": [],
"reference": "CERTFR-2022-AVI-952",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2022-10-26T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
},
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans IBM QRadar.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer un\nprobl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur, une ex\u00e9cution de code\narbitraire \u00e0 distance et un d\u00e9ni de service \u00e0 distance.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans IBM QRadar",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM 6831853 du 25 octobre 2022",
"url": "https://www.ibm.com/support/pages/node/6831853"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM 6831855 du 25 octobre 2022",
"url": "https://www.ibm.com/support/pages/node/6831855"
}
]
}
CERTFR-2023-AVI-0258
Vulnerability from certfr_avis - Published: 2023-03-24 - Updated: 2023-03-24
De multiples vulnérabilités ont été découvertes dans les produits IBM. Elles permettent à un attaquant de provoquer un contournement de la politique de sécurité, une élévation de privilèges, un déni de service à distance, une atteinte à la confidentialité des données, une injection de code indirecte à distance (XSS) et une exécution de code arbitraire à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | Spectrum | IBM Spectrum Protect Client versions 8.1.x antérieures à 8.1.17.2 | ||
| IBM | WebSphere | IBM WebSphere Remote Server version 9.0 déployée avec une version de IBM WebSphere Application Server antérieure à 9.0.5.14 incluant le correctif PH52925 | ||
| IBM | Spectrum | IBM Spectrum Protect Plus versions 10.1.x antérieures à 10.1.14 |
References
| Title | Publication Time | Tags | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "IBM Spectrum Protect Client versions 8.1.x ant\u00e9rieures \u00e0 8.1.17.2",
"product": {
"name": "Spectrum",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM WebSphere Remote Server version 9.0 d\u00e9ploy\u00e9e avec une version de IBM WebSphere Application Server ant\u00e9rieure \u00e0 9.0.5.14 incluant le correctif PH52925",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Spectrum Protect Plus versions 10.1.x ant\u00e9rieures \u00e0 10.1.14",
"product": {
"name": "Spectrum",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2023-0216",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0216"
},
{
"name": "CVE-2023-0401",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0401"
},
{
"name": "CVE-2023-26283",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26283"
},
{
"name": "CVE-2022-32190",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32190"
},
{
"name": "CVE-2022-4304",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4304"
},
{
"name": "CVE-2022-4269",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4269"
},
{
"name": "CVE-2022-41715",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41715"
},
{
"name": "CVE-2023-0215",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0215"
},
{
"name": "CVE-2023-0286",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0286"
},
{
"name": "CVE-2019-20444",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20444"
},
{
"name": "CVE-2022-2601",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2601"
},
{
"name": "CVE-2022-4203",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4203"
},
{
"name": "CVE-2022-2421",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2421"
},
{
"name": "CVE-2022-1016",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1016"
},
{
"name": "CVE-2023-0217",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0217"
},
{
"name": "CVE-2022-43552",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43552"
},
{
"name": "CVE-2023-23915",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23915"
},
{
"name": "CVE-2022-41716",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41716"
},
{
"name": "CVE-2022-0854",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0854"
},
{
"name": "CVE-2022-28893",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-28893"
},
{
"name": "CVE-2023-23914",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23914"
},
{
"name": "CVE-2023-27863",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-27863"
},
{
"name": "CVE-2022-41717",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41717"
},
{
"name": "CVE-2022-2047",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2047"
},
{
"name": "CVE-2022-43945",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43945"
},
{
"name": "CVE-2022-2880",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2880"
},
{
"name": "CVE-2018-10237",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10237"
},
{
"name": "CVE-2023-22809",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22809"
},
{
"name": "CVE-2022-4450",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4450"
},
{
"name": "CVE-2022-3996",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3996"
},
{
"name": "CVE-2022-2879",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2879"
},
{
"name": "CVE-2022-43551",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43551"
},
{
"name": "CVE-2022-43548",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43548"
},
{
"name": "CVE-2022-2588",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2588"
},
{
"name": "CVE-2022-4139",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4139"
},
{
"name": "CVE-2022-27664",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-27664"
},
{
"name": "CVE-2023-23916",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23916"
}
],
"initial_release_date": "2023-03-24T00:00:00",
"last_revision_date": "2023-03-24T00:00:00",
"links": [],
"reference": "CERTFR-2023-AVI-0258",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2023-03-24T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits \u003cspan\nclass=\"textit\"\u003eIBM\u003c/span\u003e. Elles permettent \u00e0 un attaquant de provoquer\nun contournement de la politique de s\u00e9curit\u00e9, une \u00e9l\u00e9vation de\nprivil\u00e8ges, un d\u00e9ni de service \u00e0 distance, une atteinte \u00e0 la\nconfidentialit\u00e9 des donn\u00e9es, une injection de code indirecte \u00e0 distance\n(XSS) et une ex\u00e9cution de code arbitraire \u00e0 distance.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM 6963786 du 23 mars 2023",
"url": "https://www.ibm.com/support/pages/node/6963786"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM 6965816 du 23 mars 2023",
"url": "https://www.ibm.com/support/pages/node/6965816"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM 6965812 du 23 mars 2023",
"url": "https://www.ibm.com/support/pages/node/6965812"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM 6965822 du 23 mars 2023",
"url": "https://www.ibm.com/support/pages/node/6965822"
}
]
}
CERTFR-2023-AVI-0357
Vulnerability from certfr_avis - Published: 2023-05-05 - Updated: 2023-05-05
De multiples vulnérabilités ont été découvertes dans IBM Cognos. Certaines d'entre elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur, une exécution de code arbitraire à distance et un déni de service à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "IBM Cognos Command Center version 10.2.4.1 sans le correctif de s\u00e9curit\u00e9 IF17",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2020-27223",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27223"
},
{
"name": "CVE-2020-27218",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27218"
},
{
"name": "CVE-2021-29425",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-29425"
},
{
"name": "CVE-2021-28169",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28169"
},
{
"name": "CVE-2022-4304",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4304"
},
{
"name": "CVE-2022-420004",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-420004"
},
{
"name": "CVE-2022-31160",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-31160"
},
{
"name": "CVE-2019-11358",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11358"
},
{
"name": "CVE-2022-21624",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21624"
},
{
"name": "CVE-2022-2048",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2048"
},
{
"name": "CVE-2021-28165",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28165"
},
{
"name": "CVE-2021-37533",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-37533"
},
{
"name": "CVE-2017-7658",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7658"
},
{
"name": "CVE-2022-2047",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2047"
},
{
"name": "CVE-2022-42889",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42889"
},
{
"name": "CVE-2018-12545",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12545"
},
{
"name": "CVE-2022-21449",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21449"
},
{
"name": "CVE-2022-21434",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21434"
},
{
"name": "CVE-2017-7657",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7657"
},
{
"name": "CVE-2018-12536",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12536"
},
{
"name": "CVE-2022-42004",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42004"
},
{
"name": "CVE-2022-2191",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2191"
},
{
"name": "CVE-2020-11022",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11022"
},
{
"name": "CVE-2022-38707",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-38707"
},
{
"name": "CVE-2019-10241",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10241"
},
{
"name": "CVE-2019-10247",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10247"
},
{
"name": "CVE-2017-7656",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7656"
},
{
"name": "CVE-2022-42003",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42003"
},
{
"name": "CVE-2022-21443",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21443"
},
{
"name": "CVE-2015-9251",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-9251"
},
{
"name": "CVE-2021-34428",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-34428"
},
{
"name": "CVE-2020-11023",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11023"
}
],
"initial_release_date": "2023-05-05T00:00:00",
"last_revision_date": "2023-05-05T00:00:00",
"links": [],
"reference": "CERTFR-2023-AVI-0357",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2023-05-05T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans IBM Cognos.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer un\nprobl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur, une ex\u00e9cution de code\narbitraire \u00e0 distance et un d\u00e9ni de service \u00e0 distance.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans IBM Cognos",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM 6988263 du 04 mai 2023",
"url": "https://www.ibm.com/support/pages/node/6988263"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM 6983274 du 04 mai 2023",
"url": "https://www.ibm.com/support/pages/node/6983274"
}
]
}
cleanstart-2026-sq91016
Vulnerability from cleanstart
Published
2026-05-18 13:11
Modified
2026-05-14 06:09
Summary
Security fixes for CVE-2018-10237, CVE-2020-8908, CVE-2021-22569, CVE-2021-22570, CVE-2022-2047, CVE-2022-3171, CVE-2022-3509, CVE-2022-3510, CVE-2022-36364, CVE-2022-41881, CVE-2023-20861, CVE-2023-20863, CVE-2023-26048, CVE-2023-26049, CVE-2023-2976, CVE-2023-34462, CVE-2023-36479, CVE-2023-40167, CVE-2023-41900, CVE-2023-42503, CVE-2023-44981, CVE-2024-13009, CVE-2024-23454, CVE-2024-23944, CVE-2024-25710, CVE-2024-26308, CVE-2024-29131, CVE-2024-29133, CVE-2024-38808, CVE-2024-38820, CVE-2024-38827, CVE-2024-47554, CVE-2024-47561, CVE-2024-52046, CVE-2024-6763, CVE-2024-7254, CVE-2024-8184, CVE-2025-11143, CVE-2025-22233, CVE-2025-24970, CVE-2025-25193, CVE-2025-27821, CVE-2025-41249, CVE-2025-48734, CVE-2025-48924, CVE-2025-49128, CVE-2025-52999, CVE-2025-53864, CVE-2025-55163, CVE-2025-58056, CVE-2025-58057, CVE-2025-59419, CVE-2025-67735, CVE-2025-68161, CVE-2025-8916, CVE-2026-24281, CVE-2026-24308, CVE-2026-33870, CVE-2026-33871, CVE-2026-5588, ghsa-58qw-p7qm-5rvh, ghsa-72hv-8253-57qq applied in versions: 4.0.0-r0, 4.0.0-r1
Details
Multiple security vulnerabilities affect the apache-hive package. These issues are resolved in later releases. See references for individual vulnerability details.
References
{
"affected": [
{
"package": {
"ecosystem": "CleanStart",
"name": "apache-hive"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "4.0.0-r1"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"credits": [],
"database_specific": {},
"details": "Multiple security vulnerabilities affect the apache-hive package. These issues are resolved in later releases. See references for individual vulnerability details.",
"id": "CLEANSTART-2026-SQ91016",
"modified": "2026-05-14T06:09:00Z",
"published": "2026-05-18T13:11:46.835215Z",
"references": [
{
"type": "ADVISORY",
"url": "https://github.com/cleanstart-dev/cleanstart-security-advisories/tree/main/advisories/2026/CLEANSTART-2026-SQ91016.json"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2018-10237"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2020-8908"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2021-22569"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2021-22570"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2022-2047"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2022-3171"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2022-3509"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2022-3510"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2022-36364"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2022-41881"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2023-20861"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2023-20863"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2023-26048"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2023-26049"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2023-2976"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2023-34462"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2023-36479"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2023-40167"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2023-41900"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2023-42503"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2023-44981"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-13009"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-23454"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-23944"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-25710"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-26308"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-29131"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-29133"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-38808"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-38820"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-38827"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-47554"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-47561"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-52046"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-6763"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-7254"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-8184"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-11143"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-22233"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-24970"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-25193"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-27821"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-41249"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-48734"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-48924"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-49128"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-52999"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-53864"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-55163"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-58056"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-58057"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-59419"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-67735"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-68161"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-8916"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2026-24281"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2026-24308"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2026-33870"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2026-33871"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2026-5588"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/ghsa-58qw-p7qm-5rvh"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/ghsa-72hv-8253-57qq"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-10237"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8908"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22569"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22570"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2047"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3171"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3509"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3510"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-36364"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-41881"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-20861"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-20863"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-26048"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-26049"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-2976"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-34462"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-36479"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-40167"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-41900"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42503"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44981"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-13009"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-23454"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-23944"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-25710"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26308"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29131"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29133"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-38808"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-38820"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-38827"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47554"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47561"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52046"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-6763"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-7254"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-8184"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-11143"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22233"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-24970"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-25193"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-27821"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-41249"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48734"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48924"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49128"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52999"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-53864"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-55163"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-58056"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-58057"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-59419"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-67735"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68161"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-8916"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-24281"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-24308"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33870"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33871"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-5588"
}
],
"related": [],
"schema_version": "1.7.3",
"summary": "Security fixes for CVE-2018-10237, CVE-2020-8908, CVE-2021-22569, CVE-2021-22570, CVE-2022-2047, CVE-2022-3171, CVE-2022-3509, CVE-2022-3510, CVE-2022-36364, CVE-2022-41881, CVE-2023-20861, CVE-2023-20863, CVE-2023-26048, CVE-2023-26049, CVE-2023-2976, CVE-2023-34462, CVE-2023-36479, CVE-2023-40167, CVE-2023-41900, CVE-2023-42503, CVE-2023-44981, CVE-2024-13009, CVE-2024-23454, CVE-2024-23944, CVE-2024-25710, CVE-2024-26308, CVE-2024-29131, CVE-2024-29133, CVE-2024-38808, CVE-2024-38820, CVE-2024-38827, CVE-2024-47554, CVE-2024-47561, CVE-2024-52046, CVE-2024-6763, CVE-2024-7254, CVE-2024-8184, CVE-2025-11143, CVE-2025-22233, CVE-2025-24970, CVE-2025-25193, CVE-2025-27821, CVE-2025-41249, CVE-2025-48734, CVE-2025-48924, CVE-2025-49128, CVE-2025-52999, CVE-2025-53864, CVE-2025-55163, CVE-2025-58056, CVE-2025-58057, CVE-2025-59419, CVE-2025-67735, CVE-2025-68161, CVE-2025-8916, CVE-2026-24281, CVE-2026-24308, CVE-2026-33870, CVE-2026-33871, CVE-2026-5588, ghsa-58qw-p7qm-5rvh, ghsa-72hv-8253-57qq applied in versions: 4.0.0-r0, 4.0.0-r1",
"upstream": [
"CVE-2018-10237",
"CVE-2020-8908",
"CVE-2021-22569",
"CVE-2021-22570",
"CVE-2022-2047",
"CVE-2022-3171",
"CVE-2022-3509",
"CVE-2022-3510",
"CVE-2022-36364",
"CVE-2022-41881",
"CVE-2023-20861",
"CVE-2023-20863",
"CVE-2023-26048",
"CVE-2023-26049",
"CVE-2023-2976",
"CVE-2023-34462",
"CVE-2023-36479",
"CVE-2023-40167",
"CVE-2023-41900",
"CVE-2023-42503",
"CVE-2023-44981",
"CVE-2024-13009",
"CVE-2024-23454",
"CVE-2024-23944",
"CVE-2024-25710",
"CVE-2024-26308",
"CVE-2024-29131",
"CVE-2024-29133",
"CVE-2024-38808",
"CVE-2024-38820",
"CVE-2024-38827",
"CVE-2024-47554",
"CVE-2024-47561",
"CVE-2024-52046",
"CVE-2024-6763",
"CVE-2024-7254",
"CVE-2024-8184",
"CVE-2025-11143",
"CVE-2025-22233",
"CVE-2025-24970",
"CVE-2025-25193",
"CVE-2025-27821",
"CVE-2025-41249",
"CVE-2025-48734",
"CVE-2025-48924",
"CVE-2025-49128",
"CVE-2025-52999",
"CVE-2025-53864",
"CVE-2025-55163",
"CVE-2025-58056",
"CVE-2025-58057",
"CVE-2025-59419",
"CVE-2025-67735",
"CVE-2025-68161",
"CVE-2025-8916",
"CVE-2026-24281",
"CVE-2026-24308",
"CVE-2026-33870",
"CVE-2026-33871",
"CVE-2026-5588",
"ghsa-58qw-p7qm-5rvh",
"ghsa-72hv-8253-57qq"
]
}
cleanstart-2026-wk99982
Vulnerability from cleanstart
Published
2026-05-18 13:11
Modified
2026-05-14 06:06
Summary
Security fixes for CVE-2018-10237, CVE-2020-8908, CVE-2021-22569, CVE-2021-22570, CVE-2022-2047, CVE-2022-3171, CVE-2022-3509, CVE-2022-3510, CVE-2022-36364, CVE-2022-41881, CVE-2023-20861, CVE-2023-20863, CVE-2023-26048, CVE-2023-26049, CVE-2023-2976, CVE-2023-34462, CVE-2023-36479, CVE-2023-40167, CVE-2023-41900, CVE-2023-42503, CVE-2023-44981, CVE-2024-13009, CVE-2024-23454, CVE-2024-23944, CVE-2024-25710, CVE-2024-26308, CVE-2024-29131, CVE-2024-29133, CVE-2024-38808, CVE-2024-38820, CVE-2024-38827, CVE-2024-47554, CVE-2024-47561, CVE-2024-52046, CVE-2024-6763, CVE-2024-7254, CVE-2024-8184, CVE-2025-11143, CVE-2025-22233, CVE-2025-24970, CVE-2025-25193, CVE-2025-27821, CVE-2025-41249, CVE-2025-48734, CVE-2025-48924, CVE-2025-49128, CVE-2025-52999, CVE-2025-53864, CVE-2025-55163, CVE-2025-58056, CVE-2025-58057, CVE-2025-59419, CVE-2025-67735, CVE-2025-68161, CVE-2025-8916, CVE-2026-24281, CVE-2026-24308, CVE-2026-33870, CVE-2026-33871, CVE-2026-40490, CVE-2026-41417, CVE-2026-42578, CVE-2026-42579, CVE-2026-42583, CVE-2026-42586, CVE-2026-44248, CVE-2026-5588, ghsa-58qw-p7qm-5rvh, ghsa-72hv-8253-57qq, ghsa-mj4r-2hfc-f8p6 applied in versions: 4.0.1-r0, 4.0.1-r1, 4.0.1-r2
Details
Multiple security vulnerabilities affect the apache-hive package. These issues are resolved in later releases. See references for individual vulnerability details.
References
| URL | Type | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"affected": [
{
"package": {
"ecosystem": "CleanStart",
"name": "apache-hive"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "4.0.1-r2"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"credits": [],
"database_specific": {},
"details": "Multiple security vulnerabilities affect the apache-hive package. These issues are resolved in later releases. See references for individual vulnerability details.",
"id": "CLEANSTART-2026-WK99982",
"modified": "2026-05-14T06:06:15Z",
"published": "2026-05-18T13:11:47.355078Z",
"references": [
{
"type": "ADVISORY",
"url": "https://github.com/cleanstart-dev/cleanstart-security-advisories/tree/main/advisories/2026/CLEANSTART-2026-WK99982.json"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2018-10237"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2020-8908"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2021-22569"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2021-22570"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2022-2047"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2022-3171"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2022-3509"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2022-3510"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2022-36364"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2022-41881"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2023-20861"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2023-20863"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2023-26048"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2023-26049"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2023-2976"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2023-34462"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2023-36479"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2023-40167"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2023-41900"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2023-42503"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2023-44981"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-13009"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-23454"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-23944"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-25710"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-26308"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-29131"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-29133"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-38808"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-38820"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-38827"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-47554"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-47561"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-52046"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-6763"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-7254"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2024-8184"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-11143"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-22233"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-24970"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-25193"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-27821"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-41249"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-48734"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-48924"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-49128"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-52999"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-53864"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-55163"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-58056"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-58057"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-59419"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-67735"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-68161"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-8916"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2026-24281"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2026-24308"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2026-33870"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2026-33871"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2026-40490"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2026-41417"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2026-42578"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2026-42579"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2026-42583"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2026-42586"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2026-44248"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2026-5588"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/ghsa-58qw-p7qm-5rvh"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/ghsa-72hv-8253-57qq"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/ghsa-mj4r-2hfc-f8p6"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-10237"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8908"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22569"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22570"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2047"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3171"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3509"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3510"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-36364"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-41881"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-20861"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-20863"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-26048"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-26049"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-2976"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-34462"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-36479"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-40167"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-41900"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42503"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44981"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-13009"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-23454"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-23944"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-25710"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26308"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29131"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29133"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-38808"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-38820"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-38827"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47554"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47561"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52046"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-6763"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-7254"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-8184"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-11143"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22233"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-24970"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-25193"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-27821"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-41249"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48734"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48924"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49128"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52999"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-53864"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-55163"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-58056"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-58057"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-59419"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-67735"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68161"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-8916"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-24281"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-24308"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33870"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33871"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-40490"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-41417"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42578"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42579"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42583"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42586"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44248"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-5588"
}
],
"related": [],
"schema_version": "1.7.3",
"summary": "Security fixes for CVE-2018-10237, CVE-2020-8908, CVE-2021-22569, CVE-2021-22570, CVE-2022-2047, CVE-2022-3171, CVE-2022-3509, CVE-2022-3510, CVE-2022-36364, CVE-2022-41881, CVE-2023-20861, CVE-2023-20863, CVE-2023-26048, CVE-2023-26049, CVE-2023-2976, CVE-2023-34462, CVE-2023-36479, CVE-2023-40167, CVE-2023-41900, CVE-2023-42503, CVE-2023-44981, CVE-2024-13009, CVE-2024-23454, CVE-2024-23944, CVE-2024-25710, CVE-2024-26308, CVE-2024-29131, CVE-2024-29133, CVE-2024-38808, CVE-2024-38820, CVE-2024-38827, CVE-2024-47554, CVE-2024-47561, CVE-2024-52046, CVE-2024-6763, CVE-2024-7254, CVE-2024-8184, CVE-2025-11143, CVE-2025-22233, CVE-2025-24970, CVE-2025-25193, CVE-2025-27821, CVE-2025-41249, CVE-2025-48734, CVE-2025-48924, CVE-2025-49128, CVE-2025-52999, CVE-2025-53864, CVE-2025-55163, CVE-2025-58056, CVE-2025-58057, CVE-2025-59419, CVE-2025-67735, CVE-2025-68161, CVE-2025-8916, CVE-2026-24281, CVE-2026-24308, CVE-2026-33870, CVE-2026-33871, CVE-2026-40490, CVE-2026-41417, CVE-2026-42578, CVE-2026-42579, CVE-2026-42583, CVE-2026-42586, CVE-2026-44248, CVE-2026-5588, ghsa-58qw-p7qm-5rvh, ghsa-72hv-8253-57qq, ghsa-mj4r-2hfc-f8p6 applied in versions: 4.0.1-r0, 4.0.1-r1, 4.0.1-r2",
"upstream": [
"CVE-2018-10237",
"CVE-2020-8908",
"CVE-2021-22569",
"CVE-2021-22570",
"CVE-2022-2047",
"CVE-2022-3171",
"CVE-2022-3509",
"CVE-2022-3510",
"CVE-2022-36364",
"CVE-2022-41881",
"CVE-2023-20861",
"CVE-2023-20863",
"CVE-2023-26048",
"CVE-2023-26049",
"CVE-2023-2976",
"CVE-2023-34462",
"CVE-2023-36479",
"CVE-2023-40167",
"CVE-2023-41900",
"CVE-2023-42503",
"CVE-2023-44981",
"CVE-2024-13009",
"CVE-2024-23454",
"CVE-2024-23944",
"CVE-2024-25710",
"CVE-2024-26308",
"CVE-2024-29131",
"CVE-2024-29133",
"CVE-2024-38808",
"CVE-2024-38820",
"CVE-2024-38827",
"CVE-2024-47554",
"CVE-2024-47561",
"CVE-2024-52046",
"CVE-2024-6763",
"CVE-2024-7254",
"CVE-2024-8184",
"CVE-2025-11143",
"CVE-2025-22233",
"CVE-2025-24970",
"CVE-2025-25193",
"CVE-2025-27821",
"CVE-2025-41249",
"CVE-2025-48734",
"CVE-2025-48924",
"CVE-2025-49128",
"CVE-2025-52999",
"CVE-2025-53864",
"CVE-2025-55163",
"CVE-2025-58056",
"CVE-2025-58057",
"CVE-2025-59419",
"CVE-2025-67735",
"CVE-2025-68161",
"CVE-2025-8916",
"CVE-2026-24281",
"CVE-2026-24308",
"CVE-2026-33870",
"CVE-2026-33871",
"CVE-2026-40490",
"CVE-2026-41417",
"CVE-2026-42578",
"CVE-2026-42579",
"CVE-2026-42583",
"CVE-2026-42586",
"CVE-2026-44248",
"CVE-2026-5588",
"ghsa-58qw-p7qm-5rvh",
"ghsa-72hv-8253-57qq",
"ghsa-mj4r-2hfc-f8p6"
]
}
FKIE_CVE-2022-2047
Vulnerability from fkie_nvd - Published: 2022-07-07 21:15 - Updated: 2024-11-21 07:00
Severity
2.7 (Low) - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N
2.7 (Low) - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N
2.7 (Low) - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N
Summary
In Eclipse Jetty versions 9.4.0 thru 9.4.46, and 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, the parsing of the authority segment of an http scheme URI, the Jetty HttpURI class improperly detects an invalid input as a hostname. This can lead to failures in a Proxy scenario.
References
| URL | Tags | ||
|---|---|---|---|
| emo@eclipse.org | https://github.com/eclipse/jetty.project/security/advisories/GHSA-cj7v-27pg-wf7q | Patch, Third Party Advisory | |
| emo@eclipse.org | https://lists.debian.org/debian-lts-announce/2022/08/msg00011.html | Mailing List, Third Party Advisory | |
| emo@eclipse.org | https://security.netapp.com/advisory/ntap-20220901-0006/ | Third Party Advisory | |
| emo@eclipse.org | https://www.debian.org/security/2022/dsa-5198 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/eclipse/jetty.project/security/advisories/GHSA-cj7v-27pg-wf7q | Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.debian.org/debian-lts-announce/2022/08/msg00011.html | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://security.netapp.com/advisory/ntap-20220901-0006/ | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.debian.org/security/2022/dsa-5198 | Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| eclipse | jetty | * | |
| eclipse | jetty | * | |
| eclipse | jetty | * | |
| debian | debian_linux | 10.0 | |
| debian | debian_linux | 11.0 | |
| netapp | element_plug-in_for_vcenter_server | - | |
| netapp | management_services_for_element_software_and_netapp_hci | - | |
| netapp | snapcenter | - | |
| netapp | solidfire_\&_hci_storage_node | - | |
| netapp | hci_compute_node | - |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:eclipse:jetty:*:*:*:*:*:*:*:*",
"matchCriteriaId": "0E883CFA-BABF-43AF-9E8E-216396CAC69F",
"versionEndExcluding": "9.4.46",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:eclipse:jetty:*:*:*:*:*:*:*:*",
"matchCriteriaId": "DB90B12D-86AF-4A9F-8C44-0213FA056919",
"versionEndExcluding": "10.0.9",
"versionStartIncluding": "10.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:eclipse:jetty:*:*:*:*:*:*:*:*",
"matchCriteriaId": "4A594F05-BB45-497C-ADF2-2568B3989C65",
"versionEndIncluding": "11.0.9",
"versionStartIncluding": "11.0.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
"matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*",
"matchCriteriaId": "FA6FEEC2-9F11-4643-8827-749718254FED",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:netapp:element_plug-in_for_vcenter_server:-:*:*:*:*:*:*:*",
"matchCriteriaId": "214712B6-59AF-4B5E-84BF-AF3C74A390EA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:management_services_for_element_software_and_netapp_hci:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FDAC85F0-93AF-4BE3-AE1A-8ADAF1CDF9AB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BDFB1169-41A0-4A86-8E4F-FDA9730B1E94",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netapp:solidfire_\\\u0026_hci_storage_node:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D452B464-1200-4B72-9A89-42DC58486191",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AD7447BC-F315-4298-A822-549942FC118B",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "In Eclipse Jetty versions 9.4.0 thru 9.4.46, and 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, the parsing of the authority segment of an http scheme URI, the Jetty HttpURI class improperly detects an invalid input as a hostname. This can lead to failures in a Proxy scenario."
},
{
"lang": "es",
"value": "En Eclipse Jetty versiones 9.4.0 hasta 9.4.46, y 10.0.0 hasta 10.0.9, y 11.0.0 hasta 11.0.9, el an\u00e1lisis sint\u00e1ctico del segmento de autoridad de un URI de esquema http, la clase Jetty HttpURI detecta inapropiadamente una entrada no v\u00e1lida como nombre de host. Esto puede conllevar a fallos en un escenario Proxy"
}
],
"id": "CVE-2022-2047",
"lastModified": "2024-11-21T07:00:13.840",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "NONE",
"baseScore": 4.0,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:S/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 2.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"exploitabilityScore": 1.2,
"impactScore": 1.4,
"source": "emo@eclipse.org",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 2.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"exploitabilityScore": 1.2,
"impactScore": 1.4,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2022-07-07T21:15:10.093",
"references": [
{
"source": "emo@eclipse.org",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/eclipse/jetty.project/security/advisories/GHSA-cj7v-27pg-wf7q"
},
{
"source": "emo@eclipse.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2022/08/msg00011.html"
},
{
"source": "emo@eclipse.org",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20220901-0006/"
},
{
"source": "emo@eclipse.org",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2022/dsa-5198"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/eclipse/jetty.project/security/advisories/GHSA-cj7v-27pg-wf7q"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2022/08/msg00011.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20220901-0006/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2022/dsa-5198"
}
],
"sourceIdentifier": "emo@eclipse.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "emo@eclipse.org",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-CJ7V-27PG-WF7Q
Vulnerability from github – Published: 2022-07-07 20:55 – Updated: 2022-07-19 19:42
VLAI
Summary
Jetty invalid URI parsing may produce invalid HttpURI.authority
Details
Description
URI use within Jetty's HttpURI class can parse invalid URIs such as http://localhost;/path as having an authority with a host of localhost;.
A URIs of the type http://localhost;/path should be interpreted to be either invalid or as localhost; to be the userinfo and no host.
However, HttpURI.host returns localhost; which is definitely wrong.
Impact
This can lead to errors with Jetty's HttpClient, and Jetty's ProxyServlet / AsyncProxyServlet / AsyncMiddleManServlet wrongly interpreting an authority with no host as one with a host.
Patches
Patched in PR #8146 for Jetty version 9.4.47. Patched in PR #8014 for Jetty versions 10.0.10, and 11.0.10
Workarounds
None.
For more information
If you have any questions or comments about this advisory: * Email us at security@webtide.com.
Severity
{
"affected": [
{
"package": {
"ecosystem": "Maven",
"name": "org.eclipse.jetty:jetty-http"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "9.4.47"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "Maven",
"name": "org.eclipse.jetty:jetty-http"
},
"ranges": [
{
"events": [
{
"introduced": "10.0.0"
},
{
"fixed": "10.0.10"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "Maven",
"name": "org.eclipse.jetty:jetty-http"
},
"ranges": [
{
"events": [
{
"introduced": "11.0.0"
},
{
"fixed": "11.0.10"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2022-2047"
],
"database_specific": {
"cwe_ids": [
"CWE-20"
],
"github_reviewed": true,
"github_reviewed_at": "2022-07-07T20:55:34Z",
"nvd_published_at": "2022-07-07T21:15:00Z",
"severity": "LOW"
},
"details": "### Description\nURI use within Jetty\u0027s `HttpURI` class can parse invalid URIs such as `http://localhost;/path` as having an authority with a host of `localhost;`.\n\nA URIs of the type `http://localhost;/path` should be interpreted to be either invalid or as `localhost;` to be the userinfo and no host.\nHowever, `HttpURI.host` returns `localhost;` which is definitely wrong.\n\n### Impact\nThis can lead to errors with Jetty\u0027s `HttpClient`, and Jetty\u0027s `ProxyServlet` / `AsyncProxyServlet` / `AsyncMiddleManServlet` wrongly interpreting an authority with no host as one with a host.\n\n### Patches\nPatched in PR [#8146](https://github.com/eclipse/jetty.project/pull/8146) for Jetty version 9.4.47.\nPatched in PR [#8014](https://github.com/eclipse/jetty.project/pull/8015) for Jetty versions 10.0.10, and 11.0.10\n\n### Workarounds\nNone.\n\n### For more information\nIf you have any questions or comments about this advisory:\n* Email us at security@webtide.com.",
"id": "GHSA-cj7v-27pg-wf7q",
"modified": "2022-07-19T19:42:17Z",
"published": "2022-07-07T20:55:34Z",
"references": [
{
"type": "WEB",
"url": "https://github.com/eclipse/jetty.project/security/advisories/GHSA-cj7v-27pg-wf7q"
},
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2047"
},
{
"type": "PACKAGE",
"url": "https://github.com/eclipse/jetty.project"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2022/08/msg00011.html"
},
{
"type": "WEB",
"url": "https://security.netapp.com/advisory/ntap-20220901-0006"
},
{
"type": "WEB",
"url": "https://www.debian.org/security/2022/dsa-5198"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N",
"type": "CVSS_V3"
}
],
"summary": "Jetty invalid URI parsing may produce invalid HttpURI.authority"
}
GSD-2022-2047
Vulnerability from gsd - Updated: 2023-12-13 01:19Details
In Eclipse Jetty versions 9.4.0 thru 9.4.46, and 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, the parsing of the authority segment of an http scheme URI, the Jetty HttpURI class improperly detects an invalid input as a hostname. This can lead to failures in a Proxy scenario.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2022-2047",
"description": "In Eclipse Jetty versions 9.4.0 thru 9.4.46, and 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, the parsing of the authority segment of an http scheme URI, the Jetty HttpURI class improperly detects an invalid input as a hostname. This can lead to failures in a Proxy scenario.",
"id": "GSD-2022-2047",
"references": [
"https://www.suse.com/security/cve/CVE-2022-2047.html",
"https://www.debian.org/security/2022/dsa-5198",
"https://access.redhat.com/errata/RHSA-2023:0189"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2022-2047"
],
"details": "In Eclipse Jetty versions 9.4.0 thru 9.4.46, and 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, the parsing of the authority segment of an http scheme URI, the Jetty HttpURI class improperly detects an invalid input as a hostname. This can lead to failures in a Proxy scenario.",
"id": "GSD-2022-2047",
"modified": "2023-12-13T01:19:19.589504Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "security@eclipse.org",
"ID": "CVE-2022-2047",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Eclipse Jetty",
"version": {
"version_data": [
{
"version_affected": "\u003e=",
"version_value": "9.4.0"
},
{
"version_affected": "\u003c=",
"version_value": "9.4.46"
},
{
"version_affected": "\u003e=",
"version_value": "10.0.0"
},
{
"version_affected": "\u003c=",
"version_value": "10.0.9"
},
{
"version_affected": "\u003e=",
"version_value": "11.0.0"
},
{
"version_affected": "\u003c=",
"version_value": "11.0.9"
}
]
}
}
]
},
"vendor_name": "The Eclipse Foundation"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "In Eclipse Jetty versions 9.4.0 thru 9.4.46, and 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, the parsing of the authority segment of an http scheme URI, the Jetty HttpURI class improperly detects an invalid input as a hostname. This can lead to failures in a Proxy scenario."
}
]
},
"impact": {
"cvss": {
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-20"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/eclipse/jetty.project/security/advisories/GHSA-cj7v-27pg-wf7q",
"refsource": "CONFIRM",
"url": "https://github.com/eclipse/jetty.project/security/advisories/GHSA-cj7v-27pg-wf7q"
},
{
"name": "DSA-5198",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2022/dsa-5198"
},
{
"name": "[debian-lts-announce] 20220821 [SECURITY] [DLA 3079-1] jetty9 security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2022/08/msg00011.html"
},
{
"name": "https://security.netapp.com/advisory/ntap-20220901-0006/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20220901-0006/"
}
]
}
},
"gitlab.com": {
"advisories": [
{
"affected_range": "(,9.4.46),[10.0.0,10.0.9),[11.0.0,11.0.9]",
"affected_versions": "All versions before 9.4.46, all versions starting from 10.0.0 before 10.0.9, all versions starting from 11.0.0 up to 11.0.9",
"cvss_v2": "AV:N/AC:L/Au:S/C:N/I:P/A:N",
"cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N",
"cwe_ids": [
"CWE-1035",
"CWE-20",
"CWE-937"
],
"date": "2022-10-25",
"description": "In Eclipse Jetty versions 9.4.0 thru 9.4.46, and 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, the parsing of the authority segment of an http scheme URI, the Jetty HttpURI class improperly detects an invalid input as a hostname. This can lead to failures in a Proxy scenario.",
"fixed_versions": [
"9.4.46.v20220331",
"10.0.9",
"11.0.10"
],
"identifier": "CVE-2022-2047",
"identifiers": [
"CVE-2022-2047",
"GHSA-cj7v-27pg-wf7q"
],
"not_impacted": "All versions starting from 9.4.46 before 10.0.0, all versions starting from 10.0.9 before 11.0.0, all versions after 11.0.9",
"package_slug": "maven/org.eclipse.jetty/jetty-http",
"pubdate": "2022-07-07",
"solution": "Upgrade to versions 9.4.46.v20220331, 10.0.9, 11.0.10 or above.",
"title": "Improper Input Validation",
"urls": [
"https://nvd.nist.gov/vuln/detail/CVE-2022-2047",
"https://github.com/eclipse/jetty.project/security/advisories/GHSA-cj7v-27pg-wf7q"
],
"uuid": "a0d192bf-48af-45d2-9712-88337c65eb12"
}
]
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:eclipse:jetty:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "11.0.9",
"versionStartIncluding": "11.0.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:eclipse:jetty:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "9.4.46",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:eclipse:jetty:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "10.0.9",
"versionStartIncluding": "10.0.0",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:solidfire_\\\u0026_hci_storage_node:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:element_plug-in_for_vcenter_server:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:management_services_for_element_software_and_netapp_hci:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "security@eclipse.org",
"ID": "CVE-2022-2047"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "In Eclipse Jetty versions 9.4.0 thru 9.4.46, and 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, the parsing of the authority segment of an http scheme URI, the Jetty HttpURI class improperly detects an invalid input as a hostname. This can lead to failures in a Proxy scenario."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/eclipse/jetty.project/security/advisories/GHSA-cj7v-27pg-wf7q",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/eclipse/jetty.project/security/advisories/GHSA-cj7v-27pg-wf7q"
},
{
"name": "DSA-5198",
"refsource": "DEBIAN",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2022/dsa-5198"
},
{
"name": "[debian-lts-announce] 20220821 [SECURITY] [DLA 3079-1] jetty9 security update",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2022/08/msg00011.html"
},
{
"name": "https://security.netapp.com/advisory/ntap-20220901-0006/",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20220901-0006/"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "NONE",
"baseScore": 4.0,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:S/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 2.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"exploitabilityScore": 1.2,
"impactScore": 1.4
}
},
"lastModifiedDate": "2022-10-25T19:10Z",
"publishedDate": "2022-07-07T21:15Z"
}
}
}
OPENSUSE-SU-2024:12182-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
jetty-annotations-9.4.48-1.1 on GA media
Severity
Moderate
Notes
Title of the patch: jetty-annotations-9.4.48-1.1 on GA media
Description of the patch: These are all security issues fixed in the jetty-annotations-9.4.48-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2024-12182
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
116 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-client-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-client-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-client-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-client-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-http-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-http-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-http-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-http-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-io-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-io-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-io-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-io-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-security-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-security-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-security-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-security-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-server-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-server-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-server-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-server-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-start-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-start-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-start-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-start-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-util-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-util-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-util-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-util-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
7.5 (High)
Affected products
Recommended
116 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-client-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-client-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-client-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-client-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-http-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-http-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-http-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-http-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-io-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-io-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-io-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-io-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-security-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-security-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-security-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-security-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-server-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-server-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-server-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-server-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-start-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-start-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-start-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-start-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-util-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-util-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-util-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-util-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
8 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/o… | self |
| https://www.suse.com/security/cve/CVE-2022-2047/ | self |
| https://www.suse.com/security/cve/CVE-2022-2048/ | self |
| https://www.suse.com/security/cve/CVE-2022-2047 | external |
| https://bugzilla.suse.com/1201317 | external |
| https://www.suse.com/security/cve/CVE-2022-2048 | external |
| https://bugzilla.suse.com/1201316 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "jetty-annotations-9.4.48-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the jetty-annotations-9.4.48-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-12182",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_12182-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2047 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2047/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2048 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2048/"
}
],
"title": "jetty-annotations-9.4.48-1.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:12182-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "jetty-annotations-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-annotations-9.4.48-1.1.aarch64",
"product_id": "jetty-annotations-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-ant-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-ant-9.4.48-1.1.aarch64",
"product_id": "jetty-ant-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-cdi-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-cdi-9.4.48-1.1.aarch64",
"product_id": "jetty-cdi-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-client-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-client-9.4.48-1.1.aarch64",
"product_id": "jetty-client-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-continuation-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-continuation-9.4.48-1.1.aarch64",
"product_id": "jetty-continuation-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-deploy-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-deploy-9.4.48-1.1.aarch64",
"product_id": "jetty-deploy-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-fcgi-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-fcgi-9.4.48-1.1.aarch64",
"product_id": "jetty-fcgi-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-http-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-http-9.4.48-1.1.aarch64",
"product_id": "jetty-http-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-http-spi-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-http-spi-9.4.48-1.1.aarch64",
"product_id": "jetty-http-spi-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-io-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-io-9.4.48-1.1.aarch64",
"product_id": "jetty-io-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-jaas-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-jaas-9.4.48-1.1.aarch64",
"product_id": "jetty-jaas-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-jmx-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-jmx-9.4.48-1.1.aarch64",
"product_id": "jetty-jmx-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-jndi-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-jndi-9.4.48-1.1.aarch64",
"product_id": "jetty-jndi-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-jsp-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-jsp-9.4.48-1.1.aarch64",
"product_id": "jetty-jsp-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-minimal-javadoc-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-minimal-javadoc-9.4.48-1.1.aarch64",
"product_id": "jetty-minimal-javadoc-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-openid-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-openid-9.4.48-1.1.aarch64",
"product_id": "jetty-openid-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-plus-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-plus-9.4.48-1.1.aarch64",
"product_id": "jetty-plus-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-proxy-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-proxy-9.4.48-1.1.aarch64",
"product_id": "jetty-proxy-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-quickstart-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-quickstart-9.4.48-1.1.aarch64",
"product_id": "jetty-quickstart-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-rewrite-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-rewrite-9.4.48-1.1.aarch64",
"product_id": "jetty-rewrite-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-security-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-security-9.4.48-1.1.aarch64",
"product_id": "jetty-security-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-server-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-server-9.4.48-1.1.aarch64",
"product_id": "jetty-server-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-servlet-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-servlet-9.4.48-1.1.aarch64",
"product_id": "jetty-servlet-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-servlets-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-servlets-9.4.48-1.1.aarch64",
"product_id": "jetty-servlets-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-start-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-start-9.4.48-1.1.aarch64",
"product_id": "jetty-start-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-util-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-util-9.4.48-1.1.aarch64",
"product_id": "jetty-util-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-util-ajax-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-util-ajax-9.4.48-1.1.aarch64",
"product_id": "jetty-util-ajax-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-webapp-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-webapp-9.4.48-1.1.aarch64",
"product_id": "jetty-webapp-9.4.48-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "jetty-xml-9.4.48-1.1.aarch64",
"product": {
"name": "jetty-xml-9.4.48-1.1.aarch64",
"product_id": "jetty-xml-9.4.48-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "jetty-annotations-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-annotations-9.4.48-1.1.ppc64le",
"product_id": "jetty-annotations-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-ant-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-ant-9.4.48-1.1.ppc64le",
"product_id": "jetty-ant-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-cdi-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-cdi-9.4.48-1.1.ppc64le",
"product_id": "jetty-cdi-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-client-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-client-9.4.48-1.1.ppc64le",
"product_id": "jetty-client-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-continuation-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-continuation-9.4.48-1.1.ppc64le",
"product_id": "jetty-continuation-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-deploy-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-deploy-9.4.48-1.1.ppc64le",
"product_id": "jetty-deploy-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-fcgi-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-fcgi-9.4.48-1.1.ppc64le",
"product_id": "jetty-fcgi-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-http-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-http-9.4.48-1.1.ppc64le",
"product_id": "jetty-http-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-http-spi-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-http-spi-9.4.48-1.1.ppc64le",
"product_id": "jetty-http-spi-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-io-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-io-9.4.48-1.1.ppc64le",
"product_id": "jetty-io-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-jaas-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-jaas-9.4.48-1.1.ppc64le",
"product_id": "jetty-jaas-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-jmx-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-jmx-9.4.48-1.1.ppc64le",
"product_id": "jetty-jmx-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-jndi-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-jndi-9.4.48-1.1.ppc64le",
"product_id": "jetty-jndi-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-jsp-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-jsp-9.4.48-1.1.ppc64le",
"product_id": "jetty-jsp-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-minimal-javadoc-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-minimal-javadoc-9.4.48-1.1.ppc64le",
"product_id": "jetty-minimal-javadoc-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-openid-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-openid-9.4.48-1.1.ppc64le",
"product_id": "jetty-openid-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-plus-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-plus-9.4.48-1.1.ppc64le",
"product_id": "jetty-plus-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-proxy-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-proxy-9.4.48-1.1.ppc64le",
"product_id": "jetty-proxy-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-quickstart-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-quickstart-9.4.48-1.1.ppc64le",
"product_id": "jetty-quickstart-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-rewrite-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-rewrite-9.4.48-1.1.ppc64le",
"product_id": "jetty-rewrite-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-security-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-security-9.4.48-1.1.ppc64le",
"product_id": "jetty-security-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-server-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-server-9.4.48-1.1.ppc64le",
"product_id": "jetty-server-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-servlet-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-servlet-9.4.48-1.1.ppc64le",
"product_id": "jetty-servlet-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-servlets-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-servlets-9.4.48-1.1.ppc64le",
"product_id": "jetty-servlets-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-start-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-start-9.4.48-1.1.ppc64le",
"product_id": "jetty-start-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-util-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-util-9.4.48-1.1.ppc64le",
"product_id": "jetty-util-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-util-ajax-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-util-ajax-9.4.48-1.1.ppc64le",
"product_id": "jetty-util-ajax-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-webapp-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-webapp-9.4.48-1.1.ppc64le",
"product_id": "jetty-webapp-9.4.48-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jetty-xml-9.4.48-1.1.ppc64le",
"product": {
"name": "jetty-xml-9.4.48-1.1.ppc64le",
"product_id": "jetty-xml-9.4.48-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "jetty-annotations-9.4.48-1.1.s390x",
"product": {
"name": "jetty-annotations-9.4.48-1.1.s390x",
"product_id": "jetty-annotations-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-ant-9.4.48-1.1.s390x",
"product": {
"name": "jetty-ant-9.4.48-1.1.s390x",
"product_id": "jetty-ant-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-cdi-9.4.48-1.1.s390x",
"product": {
"name": "jetty-cdi-9.4.48-1.1.s390x",
"product_id": "jetty-cdi-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-client-9.4.48-1.1.s390x",
"product": {
"name": "jetty-client-9.4.48-1.1.s390x",
"product_id": "jetty-client-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-continuation-9.4.48-1.1.s390x",
"product": {
"name": "jetty-continuation-9.4.48-1.1.s390x",
"product_id": "jetty-continuation-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-deploy-9.4.48-1.1.s390x",
"product": {
"name": "jetty-deploy-9.4.48-1.1.s390x",
"product_id": "jetty-deploy-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-fcgi-9.4.48-1.1.s390x",
"product": {
"name": "jetty-fcgi-9.4.48-1.1.s390x",
"product_id": "jetty-fcgi-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-http-9.4.48-1.1.s390x",
"product": {
"name": "jetty-http-9.4.48-1.1.s390x",
"product_id": "jetty-http-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-http-spi-9.4.48-1.1.s390x",
"product": {
"name": "jetty-http-spi-9.4.48-1.1.s390x",
"product_id": "jetty-http-spi-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-io-9.4.48-1.1.s390x",
"product": {
"name": "jetty-io-9.4.48-1.1.s390x",
"product_id": "jetty-io-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-jaas-9.4.48-1.1.s390x",
"product": {
"name": "jetty-jaas-9.4.48-1.1.s390x",
"product_id": "jetty-jaas-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-jmx-9.4.48-1.1.s390x",
"product": {
"name": "jetty-jmx-9.4.48-1.1.s390x",
"product_id": "jetty-jmx-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-jndi-9.4.48-1.1.s390x",
"product": {
"name": "jetty-jndi-9.4.48-1.1.s390x",
"product_id": "jetty-jndi-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-jsp-9.4.48-1.1.s390x",
"product": {
"name": "jetty-jsp-9.4.48-1.1.s390x",
"product_id": "jetty-jsp-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-minimal-javadoc-9.4.48-1.1.s390x",
"product": {
"name": "jetty-minimal-javadoc-9.4.48-1.1.s390x",
"product_id": "jetty-minimal-javadoc-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-openid-9.4.48-1.1.s390x",
"product": {
"name": "jetty-openid-9.4.48-1.1.s390x",
"product_id": "jetty-openid-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-plus-9.4.48-1.1.s390x",
"product": {
"name": "jetty-plus-9.4.48-1.1.s390x",
"product_id": "jetty-plus-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-proxy-9.4.48-1.1.s390x",
"product": {
"name": "jetty-proxy-9.4.48-1.1.s390x",
"product_id": "jetty-proxy-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-quickstart-9.4.48-1.1.s390x",
"product": {
"name": "jetty-quickstart-9.4.48-1.1.s390x",
"product_id": "jetty-quickstart-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-rewrite-9.4.48-1.1.s390x",
"product": {
"name": "jetty-rewrite-9.4.48-1.1.s390x",
"product_id": "jetty-rewrite-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-security-9.4.48-1.1.s390x",
"product": {
"name": "jetty-security-9.4.48-1.1.s390x",
"product_id": "jetty-security-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-server-9.4.48-1.1.s390x",
"product": {
"name": "jetty-server-9.4.48-1.1.s390x",
"product_id": "jetty-server-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-servlet-9.4.48-1.1.s390x",
"product": {
"name": "jetty-servlet-9.4.48-1.1.s390x",
"product_id": "jetty-servlet-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-servlets-9.4.48-1.1.s390x",
"product": {
"name": "jetty-servlets-9.4.48-1.1.s390x",
"product_id": "jetty-servlets-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-start-9.4.48-1.1.s390x",
"product": {
"name": "jetty-start-9.4.48-1.1.s390x",
"product_id": "jetty-start-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-util-9.4.48-1.1.s390x",
"product": {
"name": "jetty-util-9.4.48-1.1.s390x",
"product_id": "jetty-util-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-util-ajax-9.4.48-1.1.s390x",
"product": {
"name": "jetty-util-ajax-9.4.48-1.1.s390x",
"product_id": "jetty-util-ajax-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-webapp-9.4.48-1.1.s390x",
"product": {
"name": "jetty-webapp-9.4.48-1.1.s390x",
"product_id": "jetty-webapp-9.4.48-1.1.s390x"
}
},
{
"category": "product_version",
"name": "jetty-xml-9.4.48-1.1.s390x",
"product": {
"name": "jetty-xml-9.4.48-1.1.s390x",
"product_id": "jetty-xml-9.4.48-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "jetty-annotations-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-annotations-9.4.48-1.1.x86_64",
"product_id": "jetty-annotations-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-ant-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-ant-9.4.48-1.1.x86_64",
"product_id": "jetty-ant-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-cdi-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-cdi-9.4.48-1.1.x86_64",
"product_id": "jetty-cdi-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-client-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-client-9.4.48-1.1.x86_64",
"product_id": "jetty-client-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-continuation-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-continuation-9.4.48-1.1.x86_64",
"product_id": "jetty-continuation-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-deploy-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-deploy-9.4.48-1.1.x86_64",
"product_id": "jetty-deploy-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-fcgi-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-fcgi-9.4.48-1.1.x86_64",
"product_id": "jetty-fcgi-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-http-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-http-9.4.48-1.1.x86_64",
"product_id": "jetty-http-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-http-spi-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-http-spi-9.4.48-1.1.x86_64",
"product_id": "jetty-http-spi-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-io-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-io-9.4.48-1.1.x86_64",
"product_id": "jetty-io-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-jaas-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-jaas-9.4.48-1.1.x86_64",
"product_id": "jetty-jaas-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-jmx-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-jmx-9.4.48-1.1.x86_64",
"product_id": "jetty-jmx-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-jndi-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-jndi-9.4.48-1.1.x86_64",
"product_id": "jetty-jndi-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-jsp-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-jsp-9.4.48-1.1.x86_64",
"product_id": "jetty-jsp-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-minimal-javadoc-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-minimal-javadoc-9.4.48-1.1.x86_64",
"product_id": "jetty-minimal-javadoc-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-openid-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-openid-9.4.48-1.1.x86_64",
"product_id": "jetty-openid-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-plus-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-plus-9.4.48-1.1.x86_64",
"product_id": "jetty-plus-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-proxy-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-proxy-9.4.48-1.1.x86_64",
"product_id": "jetty-proxy-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-quickstart-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-quickstart-9.4.48-1.1.x86_64",
"product_id": "jetty-quickstart-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-rewrite-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-rewrite-9.4.48-1.1.x86_64",
"product_id": "jetty-rewrite-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-security-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-security-9.4.48-1.1.x86_64",
"product_id": "jetty-security-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-server-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-server-9.4.48-1.1.x86_64",
"product_id": "jetty-server-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-servlet-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-servlet-9.4.48-1.1.x86_64",
"product_id": "jetty-servlet-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-servlets-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-servlets-9.4.48-1.1.x86_64",
"product_id": "jetty-servlets-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-start-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-start-9.4.48-1.1.x86_64",
"product_id": "jetty-start-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-util-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-util-9.4.48-1.1.x86_64",
"product_id": "jetty-util-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-util-ajax-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-util-ajax-9.4.48-1.1.x86_64",
"product_id": "jetty-util-ajax-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-webapp-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-webapp-9.4.48-1.1.x86_64",
"product_id": "jetty-webapp-9.4.48-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "jetty-xml-9.4.48-1.1.x86_64",
"product": {
"name": "jetty-xml-9.4.48-1.1.x86_64",
"product_id": "jetty-xml-9.4.48-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-annotations-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-annotations-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-annotations-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-annotations-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-annotations-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.s390x"
},
"product_reference": "jetty-annotations-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-annotations-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-annotations-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-ant-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-ant-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-ant-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-ant-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-ant-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.s390x"
},
"product_reference": "jetty-ant-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-ant-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-ant-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-cdi-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-cdi-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-cdi-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-cdi-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-cdi-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.s390x"
},
"product_reference": "jetty-cdi-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-cdi-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-cdi-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-client-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-client-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-client-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-client-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-client-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-client-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-client-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-client-9.4.48-1.1.s390x"
},
"product_reference": "jetty-client-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-client-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-client-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-client-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-continuation-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-continuation-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-continuation-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-continuation-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-continuation-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.s390x"
},
"product_reference": "jetty-continuation-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-continuation-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-continuation-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-deploy-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-deploy-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-deploy-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-deploy-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-deploy-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.s390x"
},
"product_reference": "jetty-deploy-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-deploy-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-deploy-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-fcgi-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-fcgi-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-fcgi-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-fcgi-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-fcgi-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.s390x"
},
"product_reference": "jetty-fcgi-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-fcgi-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-fcgi-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-http-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-http-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-http-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-http-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-http-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-http-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-http-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-http-9.4.48-1.1.s390x"
},
"product_reference": "jetty-http-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-http-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-http-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-http-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-http-spi-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-http-spi-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-http-spi-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-http-spi-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-http-spi-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.s390x"
},
"product_reference": "jetty-http-spi-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-http-spi-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-http-spi-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-io-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-io-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-io-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-io-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-io-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-io-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-io-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-io-9.4.48-1.1.s390x"
},
"product_reference": "jetty-io-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-io-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-io-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-io-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-jaas-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-jaas-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-jaas-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-jaas-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-jaas-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.s390x"
},
"product_reference": "jetty-jaas-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-jaas-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-jaas-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-jmx-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-jmx-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-jmx-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-jmx-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-jmx-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.s390x"
},
"product_reference": "jetty-jmx-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-jmx-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-jmx-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-jndi-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-jndi-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-jndi-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-jndi-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-jndi-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.s390x"
},
"product_reference": "jetty-jndi-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-jndi-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-jndi-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-jsp-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-jsp-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-jsp-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-jsp-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-jsp-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.s390x"
},
"product_reference": "jetty-jsp-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-jsp-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-jsp-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-minimal-javadoc-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-minimal-javadoc-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-minimal-javadoc-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-minimal-javadoc-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-minimal-javadoc-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.s390x"
},
"product_reference": "jetty-minimal-javadoc-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-minimal-javadoc-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-minimal-javadoc-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-openid-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-openid-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-openid-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-openid-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-openid-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.s390x"
},
"product_reference": "jetty-openid-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-openid-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-openid-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-plus-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-plus-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-plus-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-plus-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-plus-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.s390x"
},
"product_reference": "jetty-plus-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-plus-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-plus-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-proxy-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-proxy-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-proxy-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-proxy-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-proxy-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.s390x"
},
"product_reference": "jetty-proxy-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-proxy-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-proxy-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-quickstart-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-quickstart-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-quickstart-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-quickstart-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-quickstart-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.s390x"
},
"product_reference": "jetty-quickstart-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-quickstart-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-quickstart-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-rewrite-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-rewrite-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-rewrite-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-rewrite-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-rewrite-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.s390x"
},
"product_reference": "jetty-rewrite-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-rewrite-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-rewrite-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-security-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-security-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-security-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-security-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-security-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-security-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-security-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-security-9.4.48-1.1.s390x"
},
"product_reference": "jetty-security-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-security-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-security-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-security-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-server-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-server-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-server-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-server-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-server-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-server-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-server-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-server-9.4.48-1.1.s390x"
},
"product_reference": "jetty-server-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-server-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-server-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-server-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-servlet-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-servlet-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-servlet-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-servlet-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-servlet-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.s390x"
},
"product_reference": "jetty-servlet-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-servlet-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-servlet-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-servlets-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-servlets-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-servlets-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-servlets-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-servlets-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.s390x"
},
"product_reference": "jetty-servlets-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-servlets-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-servlets-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-start-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-start-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-start-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-start-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-start-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-start-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-start-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-start-9.4.48-1.1.s390x"
},
"product_reference": "jetty-start-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-start-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-start-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-start-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-util-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-util-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-util-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-util-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-util-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-util-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-util-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-util-9.4.48-1.1.s390x"
},
"product_reference": "jetty-util-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-util-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-util-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-util-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-util-ajax-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-util-ajax-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-util-ajax-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-util-ajax-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-util-ajax-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.s390x"
},
"product_reference": "jetty-util-ajax-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-util-ajax-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-util-ajax-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-webapp-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-webapp-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-webapp-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-webapp-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-webapp-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.s390x"
},
"product_reference": "jetty-webapp-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-webapp-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-webapp-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-xml-9.4.48-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.aarch64"
},
"product_reference": "jetty-xml-9.4.48-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-xml-9.4.48-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.ppc64le"
},
"product_reference": "jetty-xml-9.4.48-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-xml-9.4.48-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.s390x"
},
"product_reference": "jetty-xml-9.4.48-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jetty-xml-9.4.48-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.x86_64"
},
"product_reference": "jetty-xml-9.4.48-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-2047",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2047"
}
],
"notes": [
{
"category": "general",
"text": "In Eclipse Jetty versions 9.4.0 thru 9.4.46, and 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, the parsing of the authority segment of an http scheme URI, the Jetty HttpURI class improperly detects an invalid input as a hostname. This can lead to failures in a Proxy scenario.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-client-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-client-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-client-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-client-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-http-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-http-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-http-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-http-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-io-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-io-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-io-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-io-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-security-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-security-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-security-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-security-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-server-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-server-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-server-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-server-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-start-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-start-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-start-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-start-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-util-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-util-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-util-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-util-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2047",
"url": "https://www.suse.com/security/cve/CVE-2022-2047"
},
{
"category": "external",
"summary": "SUSE Bug 1201317 for CVE-2022-2047",
"url": "https://bugzilla.suse.com/1201317"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-client-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-client-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-client-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-client-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-http-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-http-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-http-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-http-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-io-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-io-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-io-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-io-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-security-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-security-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-security-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-security-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-server-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-server-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-server-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-server-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-start-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-start-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-start-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-start-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-util-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-util-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-util-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-util-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-client-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-client-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-client-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-client-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-http-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-http-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-http-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-http-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-io-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-io-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-io-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-io-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-security-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-security-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-security-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-security-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-server-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-server-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-server-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-server-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-start-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-start-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-start-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-start-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-util-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-util-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-util-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-util-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2022-2047"
},
{
"cve": "CVE-2022-2048",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2048"
}
],
"notes": [
{
"category": "general",
"text": "In Eclipse Jetty HTTP/2 server implementation, when encountering an invalid HTTP/2 request, the error handling has a bug that can wind up not properly cleaning up the active connections and associated resources. This can lead to a Denial of Service scenario where there are no enough resources left to process good requests.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-client-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-client-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-client-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-client-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-http-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-http-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-http-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-http-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-io-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-io-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-io-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-io-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-security-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-security-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-security-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-security-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-server-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-server-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-server-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-server-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-start-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-start-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-start-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-start-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-util-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-util-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-util-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-util-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2048",
"url": "https://www.suse.com/security/cve/CVE-2022-2048"
},
{
"category": "external",
"summary": "SUSE Bug 1201316 for CVE-2022-2048",
"url": "https://bugzilla.suse.com/1201316"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-client-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-client-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-client-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-client-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-http-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-http-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-http-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-http-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-io-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-io-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-io-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-io-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-security-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-security-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-security-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-security-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-server-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-server-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-server-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-server-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-start-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-start-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-start-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-start-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-util-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-util-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-util-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-util-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-annotations-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-ant-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-cdi-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-client-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-client-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-client-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-client-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-continuation-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-deploy-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-fcgi-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-http-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-http-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-http-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-http-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-http-spi-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-io-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-io-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-io-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-io-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-jaas-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-jmx-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-jndi-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-jsp-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-minimal-javadoc-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-openid-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-plus-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-proxy-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-quickstart-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-rewrite-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-security-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-security-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-security-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-security-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-server-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-server-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-server-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-server-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-servlet-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-servlets-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-start-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-start-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-start-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-start-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-util-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-util-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-util-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-util-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-util-ajax-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-webapp-9.4.48-1.1.x86_64",
"openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.aarch64",
"openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.ppc64le",
"openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.s390x",
"openSUSE Tumbleweed:jetty-xml-9.4.48-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2022-2048"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…