pkg:Maven/org.eclipse.jetty:jetty-http

All known vulnerabilities

• HIGH7.4CVE-2026-2332Jetty has HTTP Request Smuggling via Chunked Extension Quoted-String Parsing
  >= 12.1.0, < 12.1.7
• MEDIUM5.3CVE-2023-40167Jetty accepts "+" prefixed value in Content-Length
  >= 9.0.0, < 9.4.52
• LOW3.7CVE-2025-11143org.eclipse.jetty:jetty-http has different parsing of invalid URIs
  >= 9.4.0, <= 9.4.58
• LOW3.7Eclipse Jetty URI parsing of invalid authority
  >= 7.0.0, < 12.0.12
• LOW2.7jetty9 - security update
  from 0, < 9.4.47