CVE-2024-6763

EUVD-2024-3114

14.10.2024, 16:15

Eclipse Jetty is a lightweight, highly scalable, Java-based web server and Servlet engine . It includes a utility class, HttpURI, for URI/URL parsing.

The HttpURI class does insufficient validation on the authority segment of a URI. However the behaviour of HttpURI
differs from the common browsers in how it handles a URI that would be
considered invalid if fully validated against the RRC. Specifically HttpURI
and the browser may differ on the value of the host extracted from an
invalid URI and thus a combination of Jetty and a vulnerable browser may
be vulnerable to a open redirect attack or to a SSRF attack if the URI
is used after passing validation checks.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	3.7 LOW	NETWORK	HIGH	NONE	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

Base Score

CVSS 3.x

EPSS Score

Percentile: 79%

Affected Products (NVD)

Vendor	Product	Version
eclipse	jetty	7.0.0 ≤ 𝑥 < 9.4.57

𝑥

= Vulnerable software versions

Early Detection

Affected products identified ahead of NVD analysis through intelligence sources.

Vendor	Product	Version	Source
eclipse	jetty	7.0.0 ≤ 𝑥 ≤ 12.0.11	ADP

Debian Releases

Debian Product

Codename

jetty9

bookworm	ignored
bookworm (security)	unimportant
bullseye	ignored
bullseye (security)	unimportant
forky	unimportant
sid	unimportant
trixie	unimportant
trixie (security)	unimportant

openSUSE / SLES Releases

openSUSE Product

Release

jetty-http

suse enterprise desktop 15 SP6	9.4.57-150200.3.31.1 fixed
suse enterprise desktop 15 SP7	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP3	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP4	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP5	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP6	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP7	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP2	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP3	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP4	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP5	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP6	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP7	9.4.57-150200.3.31.1 fixed

jetty-io

suse enterprise desktop 15 SP6	9.4.57-150200.3.31.1 fixed
suse enterprise desktop 15 SP7	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP3	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP4	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP5	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP6	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP7	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP2	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP3	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP4	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP5	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP6	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP7	9.4.57-150200.3.31.1 fixed

jetty-security

suse enterprise desktop 15 SP6	9.4.57-150200.3.31.1 fixed
suse enterprise desktop 15 SP7	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP3	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP4	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP5	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP6	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP7	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP2	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP3	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP4	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP5	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP6	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP7	9.4.57-150200.3.31.1 fixed

jetty-server

suse enterprise desktop 15 SP6	9.4.57-150200.3.31.1 fixed
suse enterprise desktop 15 SP7	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP3	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP4	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP5	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP6	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP7	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP2	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP3	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP4	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP5	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP6	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP7	9.4.57-150200.3.31.1 fixed

jetty-servlet

suse enterprise desktop 15 SP6	9.4.57-150200.3.31.1 fixed
suse enterprise desktop 15 SP7	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP3	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP4	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP5	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP6	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP7	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP2	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP3	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP4	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP5	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP6	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP7	9.4.57-150200.3.31.1 fixed

jetty-util

suse enterprise desktop 15 SP6	9.4.57-150200.3.31.1 fixed
suse enterprise desktop 15 SP7	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP3	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP4	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP5	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP6	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP7	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP2	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP3	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP4	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP5	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP6	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP7	9.4.57-150200.3.31.1 fixed

jetty-util-ajax

suse enterprise desktop 15 SP6	9.4.57-150200.3.31.1 fixed
suse enterprise desktop 15 SP7	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP3	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP4	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP5	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP6	9.4.57-150200.3.31.1 fixed
suse enterprise sap 15 SP7	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP2	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP3	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP4	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP5	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP6	9.4.57-150200.3.31.1 fixed
suse enterprise server 15 SP7	9.4.57-150200.3.31.1 fixed

Known Exploits!

https://github.com/jetty/jetty.project/security/advisories/GHSA-qh8g-58pp-2wxh

Common Weakness Enumeration

CWE-1286 - Improper Validation of Syntactic Correctness of Input
The product receives input that is expected to be well-formed - i.e., to comply with a certain syntax - but it does not validate or incorrectly validates that the input complies with the syntax.

References

https://github.com/jetty/jetty.project/pull/12012

https://github.com/jetty/jetty.project/security/advisories/GHSA-qh8g-58pp-2wxh

https://gitlab.eclipse.org/security/cve-assignement/-/issues/25

https://security.netapp.com/advisory/ntap-20250306-0005/