CVE-2025-2332: Eclipse Jetty HTTP Request Smuggling via Chunked Extension Parsing

github.com 2026-04-18翻訳準備中…中国語で表示中中国語 →English →

Security AdvisoryCVE-2025-2332HighEclipse Jetty

Affected:

org.eclipse.jetty:jetty-http 12.1.0-12.1.6
org.eclipse.jetty:jetty-http 12.0.0-12.0.32
org.eclipse.jetty:jetty-http 11.0.0-11.0.27
org.eclipse.jetty:jetty-http 10.0.0-10.0.27
org.eclipse.jetty:jetty-http 9.4.0-9.4.59

Fixed in:

12.1.7
12.0.33
11.0.28
10.0.28
9.4.60

参照 CVE: CVE-2026-2332 · 7.4

本文由本平台从 github.com 自动抓取，经 LLM 流水线清洗、双语翻译。版权归原作者。查看原文。

このソースからの他の記事

Arbitrary File Write Vulnerability in cramfs-tools cramfsck -x with PoC 2026-05-11 cramfs-tools cramfsck Arbitrary File Write via crafted cramfs image extraction 2026-05-11 cramfsck Directory Traversal Fix via Invalid Filename Check 2026-05-11 cramfs-2.2 Security Update: Fixes DoS, Buffer Overflow, and Path Traversal 2026-05-11 Open5GS SMF HR Mode DNN Validation Flaw Causes Service Interruption 2026-05-11